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TRAVEL FIRMS’ IT 
PROJECTS FALTER 


Industry scales back in 
wake of terror attacks 


BY JENNIFER DISABATINO 
MIAMI BEACH 


The terrorist attacks of Sept. ll 


did more than ground airline 
traffic for a few days. They also | 
scuttled IT projects at compa- | 


nies throughout the travel in- 
dustry. 

“It came to a crunching halt,” 
said Karen Brasher at the Pho- 
CusWright Executive Confer- 
ence here last week. 
director of e-commerce at 


| Web redesign 


THE BOTTOM LINE: IT projects 
vanished with the tourists. 


and integrating 


| information with the back-end 


Brasher, | 


American Airlines Vacations, | 


the packaged tour division of 


the Dallas-based airline, said 
her division was looking at a 


system that links to hotels and 
other travel providers. Now 
that work has been put on hold 

John Marriott III, executive 
vice president of sales and mar- 
keting at Washington-based 


Marriott International Inc., said 


Travel, page 77 


COMDEX EXPECTS ATTENDANCE DIP 


Number of exhibitors 
down as economy sags 


BY CAROL SLIWA 


cline from 2,350 to 2,000 and 
the square footage of exhibitor 


space to slide from just over 1 


| million to 750,000. 


Securing a hotel room in Las | 


Vegas during Comdex week 


has traditionally amounted to | 
an exercise in futility. But this | 


year, vacancy signs are up and 
rates are down. 
Comdex/Fall 2001 


Kim Myhre, 
Comdex Worldwide, 
Key3Media Group, attributed 
the 25% drop to the “economic 
state of the industry, not what 
happened on Sept. 11.” He said 


| he has seen no major cancella- 


organiz- | 


ers at Los Angeles-based Key3- | 
Media Group Inc. said they ex- | 


pect attendance to fall 


from | 


last year’s 200,000 to 150,000 | 
this year. They also expect the | 


number of exhibitors to de- 


tions, and all major keynote 
speakers are ready to go. 

“If the effect of a strong 
Comdex was to jump-start the 
IT industry, we'd all be very 
pleased,” Myhre said, noting 

Comdex, page 14 
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Foes of controversial software licensing 
law say vendor proposal still falls short 


BY LEE COPELAND 
AND PATRICK THIBODEAU 


the vendor- 


software  li- 


Opponents of 
backed UCITA 
censing law will meet here this 
week to seek mé jor 
including 

“self 
a provision that 


changes, 
prohibition of 
help,” 
lets a vendor shut down 
a user’s system remotely. UCI- 
rA’s backers have signaled a 
willingness to delete this shut- 
off provison, but 
that alone isn’t enough. 

UCITA is a model act spon- 
sored by the National Confer- 


critics say 


Since the first message 


was sent in 1971, e-mail 


has transformed the way 


we do business — and 
the way many of us live. 


In our special report, we 


examine the impact that 


e-mail has had on the en- 
terprise and look ahead to 
the new technologies that 


may drive more change. 


Report begins on page 16. 


TEGAL 
AFFAIRS 


ence of Commissioners 
Uniform State Laws, which has 
urged all 
Even if that body 


terations, however, 


on 
States to adopt it. 
agrees to al- 
the impact 
of those changes remains in 
question. That’s be- 
cause UCITA has al- 
ready been adopted by 
Maryland and Virginia, 
and companies say ven 
dors beginning to cite 
those states’ laws in their soft- 
ware licensing contracts. 

“We were doing business 
with software company 
that fought more than usual to 


have Maryland law in the con- 


are 


one 


ty ai here 


tract,” said Dave Weidenfeld, 
senior counsel 
ant McDo 
Brook, Ill. “We 
the deal if Mar 


and 


at fast-food gi- 
nald’s Corp. in Oak 
would not do 
was 


yland law 


used, eventually they 
caved in.” 

Weidenfeld said McDonald's 
is adding warranties to its soft 
ware contracts to ensure that 


it’s covered against financial 
damages that may result from 
downtime should a vendor in 
voke the self- 


Michael 


help measure. 

intellectual 
property counsel at Milwau- 
kee-based Boyle, Fredrickson, 
Newholm, Stein & Gratz SC, 
said the law makes it difficult 
for all but the 


nies to p 


Gratz, 


largest compa- 
ush back against unfa- 
vorable contract terms 

UCITA, page A 
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NEWS 6 


6 Aetna, the nation’s largest 
health insurer, pins its financial re- 
covery on a tight bond between IT 
and the company’s business units. 


7 Nine states, including tech- 
centric California and Massachu- 
setts, vow to keep fighting the 
antitrust battle against Microsoft. 


SIT plays a key role in tracking 
the disposal of anthrax-tainted 
materials. 


10 Now that Lockheed Martin has 
won the largest defense contract in 
U.S. history, the responsibility for 
keeping the promises made in the 
bidding war falls on the IT systems 
that helped win the contract. 


12 The government is awash in 
calls for money to be allocated for 
IT to safeguard critical infrastruc- 
ture and homeland security. 


; k For breaking news, updated 
1c daily at noon and 5 p.m., visit 
Lmnk@e the Computerworld.com 
Web site 


www.computerworld.com/q?q4000 


PLAYING THE 
BOARDS 


Sitting on the board 
of a vendor company 
can provide CIOs 
with invaluable busi- 
ness experience, but 
beware the conflicts 
of interests that such 
positions can pose 


PAGE 32 


LAPTOPS TO LIVE WITH 


If you’re in the market for a laptop 


computer, reviews editor Russell Kay 
presents a group of machines that will 


help lighten travelers’ loads. PAGE 60 
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31 Joe Auer says it’s a great time 
to wrangle some price or support 
concessions from vendors whose 
books close Dec. 31. 


38 ROI: Service-level agreements 
with telecommunications pro- 
viders can be improved by getting 
vendors to agree to deliver specific 
skill sets and by meting out net- 
work performance metrics. 


40 Harvard Business Review 
author Michael C. Jensen says 
corporate budgeting encourages 
managers to cheat, lowball targets 
and inflate results. That’s why he 
advocates linear bonus plans. 


48 Welch Allyn’s new enterprise 
incentive management system is 
expected to help the company save 
$550,000 to $1 million per year by 
improving the way the medical 
supplies maker tracks and rewards 
its salespeople. 

50 Workstyles: Take a look at 
what life is like for IT workers 

on the front lines of defense 
against bioterrorism. 


TECHNOLOGY 33 


53 Nicholas Petreley says Micro- 
soft originated and perpetrated DLI 
hell, so why should we believe the 

company has devised a way for de- 
velopers to get it out of Windows? 


54 Novell has built its new strat- 
egy around an array of directory- 
enabled applications and services, 
but will it yield the e-commerce 
customers it’s aimed at? 


58 High-end Wintel hardware 
such as Unisys’ ES7000 has caught 
the eye of companies looking to 
replace many small servers with 
larger multiprocessor machines. 


62 QuickStudy: Reverse-engi- 
neering is the process of analyzing 
the functions of a piece of software 
or hardware and then translating 
them into a human-readable for- 
mat. Find out more in our tutorial. 


64 Security Journal: With secu- 
rity manager Vince Tuesday away, 
his team goes to work when it 
encounters suspicious port scans 
and connection attempts. 


OPINIONS © 28 


Patricia Keefe says the gov 
ernment’s settlement with Micro- 
soft lets the IT industry and the 
public down by paving the way 
for business as usual in Redmond 
and by giving the company a fairly 
clear road to the Internet. 


) David Moschella writes that a 
critical part of the settlement will 
be the makeup and work of the 
three-person technical committee 
that will oversee the accord. 


Frank Hayes says the details 
surrounding the Microsoft settle- 
ment constitute a sideshow. The 
company’s real problem is that its 
whole business model is broken, 
and it needs new ideas. 


Pimm Fox proposes that if you 
have Wintel and Linux servers, you 
can save time and money by plac- 
ing more applications on them. 


Editorial/Letters 28, 29 
How to Contact CW 76 
Company Index 76 
Shark Tank 78 
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YOUR THOUGHTS 


As e-mail technology turns 30 
years old, share your opinions and 
memories about the medium. 
www.computerworld.com/q?a1220 


E-MAILS IMPACT 


Computerworld reporter Brian Sul- 
livan talks to experts in business 
and academia about how e-mail 
has changed the way people com- 
municate. Read more on the effect 
of “You’ve got mail.” 
www.computerworld.com/q?a24959 


HOW HACKERS 
BREAK IN 


Security professional Michael 
Casper outlines how hackers use 
their understanding of human 
nature to break into a company’s 
systems — and what you can do 
to stop these threats. 
www.computerworld.com/security 


INNOVATOR 
OR PREDATOR? 


Microsoft argues that integrating 
new features such as MediaPlayer 
into its operating system is innova- 
tion. That’s untrue — and it should 
be illegal, says community mem- 
ber Martin Goetz. 
www.computerworld.com/community/os 
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Aetna Pins Recovery 


Cambridge Univ. May 
Sue Oracle, KPMG 


The University of Cambridge in Eng- 
land is considering possible legal 
action against Oracle Corp. and 
KPMG Consulting Inc. for a faulty 


CIO’s plan will create six service units 


computer system that the university | BY LUCAS MEARIAN 


estimates it spent $13 million in- 
stalling with the aid of the two com- 
panies. The university said it spent 
five years and more than twice as 
much money as it had budgeted on 
the computerized financial system. 


Feds Get Failing 
Cybersecurity Grade 


The House Subcommittee on Gov- 
ernment Efficiency, Financial Man- 
agement and Intergovernmental Re- 
lations on Friday issued a failing 
grade to federal agencies for their 
cybersecurity efforts. “No responsi- 
ble parent would stand for this kind 
of performance,” said Harris N. 
Miller, president of the Arlington, 
Va.-based Information Technology 
Association of America. 


Unilever Signs 
Data Integration Pact 


Acta Technology Inc. in Mountain 
View, Calif., will announce Wednes- 
day that its data integration soft- 
ware will be deployed by London- 
based Unilever PLC throughout the 
consumer products giant’s world- 
wide organization. The multimillion- 
dollar contract will be spread over 
the next two years. 


Yahoo Cleared in Suit 


AUS. District Court judge dismissed 
a case against Yahoo Inc. by French 
organizations that sought to penalize 
the company for allowing Nazi-ori- 
ented auction items and Internet 
links on its U.S. Web portal. Sunny- 
vale, Calif.-based Yahoo can't be 
forced to comply with French laws 
against the expression of pro-Nazi 
and anti-Semitic views, because 
doing so would violate its free- 
expression rights, the judge said. 


VER THE PAST few 
years, Aetna Inc. 
has strug- 
gling with a back- 
log of claims cre- 
ated by slow processing sys- 
tems, in addition to trying to 


been 


| centralize data on the millions 
of customers it has garnered 


from a flurry of acquisitions. It 
has also been trying to recover 
from three straight quarters of 
financial losses. 

Executives for the nation’s 
largest health insurer acknowl- 


| edge that the company bit off 


more than it could chew in 


buying three other insurers 


| since 1996. Now senior man- 
| agement is banking much of its 


financial recovery on its new 
CIO, Wei-Tih Cheng, and his 


| plan to wed the company’s IT 
| department with other busi- 


ness units and train business 
managers to be overseers of 


Performing the Consolidation Dance 


Along with reorganizing Aetna’s 
IT infrastructure, the company’s 
ClO, Wei-Tih Cheng, is faced with 
finishing the consolidation of 
legacy systems from three big 
acquisitions 

Between 1996 and 1999, Aet 
na spent more than $11 billion to 
purchase U.S. Healthcare Inc., 
NYLCare Health Plans and Pru- 
dential HealthCare. This year 
alone, Aetna has switched 3.5 
million dental customers from the 
Prudential buyout over to its cen- 
tralized database system; the in- 
surer expects to transfer 4 million 
more customers next year. 

“By the time you build the per- 
fect system, things have changed. 
And, given the sense of urgency 
...we need to migrate off those 
old systems as soon as possible,” 
Cheng said. “It's not a technical 
migration, where you can just 


| Conn.-based 

insurer reported its 
| third 
quarterly 
| loss, posting a $54.4 


technology projects. 
“Historically, IT as a profes- 


| sion has not succeeded in edu 
cating 
| what IT discipline is 
| about. So IT invest- 


business leaders on 


ments, by and large, 

have not been opti- 

mized,” Cheng said. 
Aetna 


could use 


| some optimizing. Last 


Hartford, 
health 


week, the 


consecutive 
operating 


| million shortfall. It blamed the 
| most recent loss on high med- 


ical costs, saying the benefits 


| of strategic and operational 
| changes currently under way 


at the company won't be evi- 
dent until next year or 2003. 

head of 
Fox- 


Greg Crawford, 


health care research at 


| Pitt, Kelton Inc., an investment 


| 
dump the records into your 
hosting database and that's it 

It has to do with the business 
operations.” 

Cheng says that Aetna has the 
largest member database in the 
country and that senior manage- 
ment has made it clear that it 
wants to move to a more “fact- 
based, data-based, decision- 
making culture,” as opposed to 
relying on anecdotal information 
to make strategic decisions, as it 
has done in the past. 

“The challenges are that the 
systems are huge and they are not 
easily modifiable because some 
of them. . . have a long history,” 
Cheng said. “We need to improve 
time to market, the quality of 
changes and new systems we de- 
velop, and do it cost effectively.” 

In order to accomplish that, 








Cheng plans to develop an enter- 


On II/Business Union 


bank in New York, said Aetna’s 


problems stem from its inabili- | 


ty to identify cost trends. 
“Ideally, the information sys- 


| tems should tell all of the man- 


agers what’s going on in the | 
| business in a real-time way,” | 


| Paper Chase 


| Crawford said. “Companies 


AETNA CIO Wei-Tih 
Cheng: IT invest- 
ments haven't 
been optimized. 


| six 


need to know exactly 
where their 
trends are in the mid- 
dle of 2000 in order 
to be able to price 
properly in 2001. 
That means the busi- 
ness data needs to be 
accurate and timely. 


cost 


There’s 
question on both 
the past.” 


Cheng, who took over as CIO 


| in April after serving as IT di- 
| rector at the Memorial Sloan- 


Kettering Cancer Center in 


| New York, has constructed a 
six-month plan that will spawn 
service units within 
| Aetna aimed at dedicating spe- 
| cific resources to business op- 
| erations. Those units will be re- 


new 


prisewide information strategy 
that will focus on processes as 
opposed to the technology itself 
Part of that strategy includes a 
capability and maturity model, 
which describes the principles 
and practices needed to certify 
software development. 

Level 1 deals with how to man- 
age a software project: Level 2 fo- 
Cuses on repeatable processes; 
Level 3 is defining the process; 
Level 4 revolves around manage- 
ment processes; and Level 5 is 
key or optimal practices. 

“Our goal is to reach Level 3 in 
three and a half years,” Cheng 
said. “This will bring consistency 
in the way we develop software, 
and this also will leverage the 
[business system and manage- 
ment model] resources so that 
both business customers and IT 
professionals will follow the same 
methodology.” 


ceaearern eee ae mrNnmsenene eee 


- Lucas Mearian 


Spree carne neoman are eure 


| encountered 


counts with Aetna in | 


| claims. The more that 
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sponsible for areas such as 
strategic IT planning; applica- 


| tion development; and technol- 


ogy and architecture services, 


| which will conduct research on 
| emerging technologies. 


“I think for us that solution 


| delivery is my focus,” Cheng 
| said. “If the roles and responsi- 


bilities and the road maps are 
not clear, then you kind of fum- 
ble a lot. You kind of step on 


| each other’s toes, and we can- 


not afford that.” 


According to Gail Bou- 
dreaux, Aetna’s head of claims 
and customer service opera- 
tions, in the past, the 20,000 
employees in her group often 
inefficiencies 
when processing claims be- 


| cause many of the operations 
| were paper-based. 

[been] a | 
| cian submitted a claim for pay- 


For example, when a physi- 


ment, if he inadvertently used 
the wrong code, it would have 
to be resubmitted, resulting in 
multiple mailings or faxes. In 
other instances, physicians 
sometimes submitted two of 
the same requests by mistake, 
which led Aetna to erroneously 
pay out millions of dollars in 
Aetna 


| can standardize and automate 
| its 
| claims, the easier, faster and 


800,000 daily medical 
more accurately they can be 
processed, said Boudreaux. 
Since creating joint IT/busi- 
ness teams, autoadjudication 
the automated electronic 
processing of requests for pay- 
ment from doctors for simple 
office visits or checkups — has 
increased by almost 30%, from 


|| 40.1% in April 2000 to almost 
}| 70% today, according to Bou- 
|| dreaux. 


Through autoadjudication, 
simple claims don’t have to be 
double-checked by agents and 
are processed by computer 
systems within 48 hours, com- 
pared with the normal 16-day 
manual turnaround cycle. The 
goal is to get about 75% of all 
claims autoadjudicated. 

Crawford said Cheng’s IT 
strategy seems to be taking 
Aetna in the right direction, 
but it’s a path the company 
should have been headed in 
several years ago. D 
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NEWS 


States, Users Still Worried About Microsoft 


Fear settlement with 
DOJ is too lenient 


BY PATRICK THIBODEAU 


California, home to Microsoft 
Corp.’s most ardent business 
rivals, has the 
leader among the nine states 
that rejected the federal gov- 


ernment’s settlement of 


emerged as 


its 
antitrust case against the soft- 
ware giant. It’s a leadership po- 
sition Kevin Dempsey, CIO at 
Steel & Aluminum 
Co. in Los Angeles, says he can 
understand. 
“California is 


Reliance 


definitely 
poised to take a more aggres- 
sive stance,” said Dempsey, 
who also said he believes that 
California is interested in pro- 
tecting its technology firms. 
“The state has always been a 
leader in technology, so I think 
they have a great stake.” 

The dissenting states aren't 
alone in their concern. 


Insurer Sues, 
Mismanaged 


Charges firm with 


BY LUCAS MEARIAN 
Health insurer Highmark Inc. 
is suing KPMG Consulting Inc. 


for what is likely to be tens of 


millions of dollars over what it 
claims was the consultancy’s 
failure to create a critical elec- 
tronic billing and accounts- 
receivable system. Highmark 
said KPMG abandoned the 
two-year, $15 million project 
this summer after it missed 
deadlines and 
overruns through mistakes. 
The $5 billion insurance 
company brought six charges 
against McLean, Va.-based 
KPMG Consulting, including 
malpractice, fraud and breach 


created cost 


| 


| 


The Case Splits in Two 


Nine states have opted to join the U.S. government's settlement 
with Microsoft, while nine others are continuing litigation. As a 
result, this case, in the words of U.S. District Court Judge Colleen 
Kollar-Kotelly, will proceed down “two tracks.” 


Once the proposed settlement is 
published in the Federal Register 
later this month, the public has 60 
days to comment on it, after which 
the government has 30 days to re- 
spond. The judge must then decide 
whether the settlement is in the 
public interest. 


The settlement between Mi- 
crosoft and the U.S. Depart- 
ment of Justice (DOJ), which is 
aimed primarily at helping PC 
makers and some rival 
ware vendors, is expected to 
have little effect on corporate 
end users, who are becoming 
Microsoft’s 

power as 


soft 


as worried about 
increasing market 
some vendors are. 


laims KPMG 
illing Project 


of contract. In its complaint, 
filed Nov. 2 in U.S. District 
Court in Alexandria, Va., High- 
mark said KPMG Consulting 
ran behind schedule by more 
than a year and attempted to 
charge the insurer an addition- 
al $8 million to complete the 
first phase of the project. 
“We're still calculating what 
we're going to need should we 
move forward on the project,” 
said Highmark spokesman Bill 
Miller. “What telling 
people at this point is that 
Highmark is alleging it suf- 
fered tens of millions [in 
losses] as a result of this.” The 
amount of damages being 
sought wasn’t specified in the 


we're 


lawsuit. 
Pittsburgh-based Highmark 
claims that KPMG completed 


less than 20% of the project | 


The nine states pursuing the case 
have a constitutional right to do so. 
The judge is planning remedy hear- 
ings, with courtroom testimony be- 
ginning in March. The dissenting 
states will begin a new discovery 
process, seeking documents from 
Microsoft. By Dec. 7, these states 
must submit their proposed remedy. 


While 
managers 


some corporate IT 


may praise Micro- 
soft for bringing standardiza- 
tion to a networked world, 
they’re also concerned about 
its ability to change enterprise 
licensing terms with little ap- 
parent fear of competitors. 
“We uncomfort- 
able with the power that Mi- 


feel more 


crosoft is wielding as time 


and that it was done in an un- 
satisfactory manner, “despite 
receiving $12 million.” The in- 
surer says KPMG then aban- 
doned the project, 


Highmark to complete it. 


leaving 


Assigning Blame 

KPMG responded to 
charges last week by placing at 
least half the blame on High- 
mark. 

“Most of our engagements 


the 


are collaborative between us 
and our clients. Each 
bears an equal responsibility to 


of us 


help the project succeed or 
fail,” said KPMG spokesman 
John Schneidawind. “If either 
party fails to 
break down. 
“We've been able to deliver 
on our part of the project, but 
through much of the engage- 
ment, Highmark hasn’t done 
its part to ensure a successful 
implementation of the pay- 


deliver, it can 


| ment svstem on time and on 


budget,” Schneidawind said. 
Highmark chose KPMG for 
the project in May 1999. The 


goes by,” said Dempsey 
Amy S. Courter, 
IT at Valassis Communications 


lirector of 


Inc. in Livonia, Mich., < 


lefinitel 


“They are 


position 


from a 


she said. 


Broader Issues 

Microsoft’s market power 
has been untouched by the five- 
year consent decree reached 
week with the DOJ 
nine of the 18 states involved in 
the the 
critics, many 


last and 


case, say company’s 
industry analysts 
and the states continuing the 
litigation. The settlemen 
ly addresses issues related to 
PC operating systems, such as 
licensing terms with PC makers 
and desktop configurations. 
But it doesn’t address technolo 
gies such as Web services and 
intelligent devices that analysts 
believe will supplant the PC in 
the years ahead. 

“The 


personal computer 


that is the focus of this suit 
isn’t the center 
anymore,” said Dwight Davis, 
an analyst at Summit Strategies 
Inc. in Boston 


The decision by technology- 


»f the universe 


four-stage project, known as 
HighBAR, was supposed to be 
completed in the first quarter 
of next year but never went be- 
yond the second stage. 
Highmark said KPMG in 
formed it in April for the first 
time that it would need anoth- 
er $8 million to complete the 
first stage of the project. 
Highmark refused to pay the 
additional ind KPMG 
stopped work on the project in 
mid-June. That most 
“disruptive point” at which 
KPMG could have chosen to 
stop, because Highmark was at 
tempting to move into the “pro- 
duction portion of the system 
[KPMG] allegedly completed, 
according to Highmark. 
Schneidawind last week said 
that because KPMG had only 
received the complaint a day 
| earlier, it wouldn’t be able to 
elaborate on its position. How- 


fees, 


was the 


ever, “lawsuits are a part of do 

ing business,” he said. “We still 
| hope to rectify the probiem 
| and stand readv to work with 
| them if they want us to.” D 


centric states such 


nia, Massachusetts 


to continue the | 


> ultimate sc 


restrictions 


vinced that t 


s settiement 


1 Bender manager at 


Falcon Plastics Inc., a Brook 


1 


n, said she doesn’t 


the settlement will foster inno- 


vation on tt > she would 


ike to see. “I think we going 
to be regimented to incremen- 
tal steps instead of giant leaps,’ 
she said 

But Edward 


chemical maker FMC Co 


Flynn, ¢ 


Philadelphia, said there’s a big 
picture reason for the govern 
ment to settle: the economy 
‘Lack of spending in the 
1 whole is due to 
the Micro- 


soft case is part of that uncer 


tainty, said Flynn. DB 


economy as 


uncertainty,” and 


The Allegations 


Highmark is claiming that 
KPMG has cost it tens of mil- 
lions of dollars by failing to 
complete an IT project. The 
charges are as follows: 


Malpractice: kpc “negli- 
gently, recklessly and/or 
intentionally failed to exer- 
cise the ordinary skill and 
knowledge possessed by 
professional computer 
consultants.” 


Fraud: kpMc’s representa- 
tions were knowingly false 
because it knew it didn’t 
have any significant experi- 
ence with object-oriented 
analysis and design. 


Negligent misrepresentation: 
KPMG should have known 
its representations were in- 
correct and that Highmark 
would rely on them. 


Breach of contract: 
KPMG failed to fulfill its 
promise to Highmark. 
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Credit Card Rivals Seek 
Mobile Payment Standards 


Analysts view formation of consortium 
as a move to trump mobile carriers 


BY BOB BREWIN 
OUR OF THE WORLD'S 
largest credit card 
firms have formed a 
consortium to jointly 
develop secure mo- 

bile payment standards that 

they believe will help make 
mobile commerce a reality 
within two years. 

Analysts viewed the forma- 
tion of the Mobile Payments 
Forum as the latest gambit in 
a high-stakes battle between 
credit card companies and mo- 
bile carriers for control of the 
m-commerce marketplace and 
cell phone customers 

New York-based American 
Express Co., MasterCard In- 
ternational Inc., Visa Interna- 
tional Inc. and Tokyo-based 
JCB Co. last week decided to 
join forces to develop a cohe- 
sive approach to issues such as 
security and customer authen- 
tication, rather than waiting 
for results from the “fragment- 
ed” efforts by the card issuers 
and mobile carriers during 
the past two years, said Joe 
Chouinard, vice president of 
new e-commerce channels at 
Foster City, Calif.-based Visa. 


Building Blocks 

Based in Wakefield, Mass., 
the Mobile Payments Forum 
plans to develop standard de- 
liverables to serve as building 
blocks for security and card- 
holder verification for 
by banks, phone manufactur- 
ers and mobile carriers, said 


use 


Simon Pugh, vice president of 


infrastructure and standards at 
MasterCard in Purchase, N.Y. 
The standards could lead to 
the development of a system 
that lets people use mobile 
phones to make purchases at 
stores, with authorization and 
payment data flowing securely 
through the cellular phone net- 


work to wired networks oper- 
ated by the forum partners and 
then to member banks. 

Pugh said the forum intends 
to invite mobile communica- 
tions carriers around the world 
to join, but he declined to say 
whether any had signed on yet. 

Ritch Blasi, a spokesman for 
Redmond, Wash.-based AT&T 
Wireless Services Inc., said it 
still needs to be determined 
whether banks and card com- 


IT Helps Waste 


Clean Harbors 
will track NBC’s 
debris via satellite 


BY BOB BREWIN 

When Clean Harbors Inc. 
begins hauling away poten- 
tially anthrax-tainted 
from NBC’s offices in New 
York, managers 
will track the movement of the 
trucks in real time on a wide- 


debris 


operations 


screen map in a control room 
at the company’s headquarters 
in Braintree, Mass. 
the 
any hazardous waste requires 
documentation for both the 
U.S. Environmental Protection 
Agency and the Department 
of Transportation (DOT), a 
Clean Harbors employee in 
New York will scan the paper 
files associated with the ship- 
ment and transmit them as Tag 
File Format files for 
storage in Clean Harbors’ net- 
worked computer system. The 
system runs on dual eight- 
processor servers from Com- 
paq Computer Corp. 

David Proud, vice president 
of e-commerce at Clean Har- 


Because 


Image 


movement of 


panies or carriers will be in 
charge of payments. Cellular 
carriers such as AT&T Wire- 
operate 


billing and customer relation- 


less sophisticated 
ship management systems that 
can be configured to handle 
mobile payments, Blasi said. 
Cellular carriers also have a 
financial 
control 


incentive to retain 
m-commerce, he 
said. “Some card companies 


of 


get 6% of every transaction. 
What if we could get a quarter- 
percent of that?” 

Avivah Litan, an analyst at 
Stamford, Conn.-based Gart- 


ner Inc., said she believes the 


Hauler Handle 


bors, said the satellite tracking 
system and the electronic stor- 
age of hazardous waste ship- 
ping documents are just two 
examples of how the 21-year 
old environmental 
company 


services 
has harnessed IT to 
manage the gritty business of 
hazardous waste disposal and 
environmental remediation. 
This includes work at the 
World Trade Center site in New 
York, where the company, since 
Sept. ll, had 
waste cleanup crews and a 
mobile command center with 
high-speed Digital Subscriber 
Line connections for onboard 
computers and scanners. 


has hazardous 


Online Access 

The Clean Harbors com- 
puter network has 1.7TB of 
storage capacity, according to 
Joe McNally, the company’s 
vice president of MIS. The sys- 
tem provides online access to 
everything from information 
about hazardous material — 
with the anthrax section sub- 
stantially beefed up in the 
past two months — to shipping 
documents available to Clean 
Harbors customers through a 
password-protected Web site. 


credit card rivals want to pre- 
sent a united front against cell 
carriers, which want to control 
the mobile payment process. 

One of the major mobile car- 
riers in Europe is interested in 
developing its own payment 
system, she said, adding that a 
number of carriers are consid- 
ering developing their own 
systems for micropayments of 
$100 or less, with big-ticket 
purchases handed off to the 
card companies. 

Litan said the Mobile Pay- 
ments Forum more 
basic problem than developing 
standards: poor market pene- 


faces a 


nthrax Safely 


The firm’s patented Choice 
e-commerce system also lets 
Clean Harbors customers such 
as those in the oil and chemical 
industries fill out DOT docu- 
ments online and obtain quotes 
for the transportation of waste 
material. Clean Harbors has 
650 trucks and a dozen sites 
for hazardous waste disposal. 

The company’s customer re- 
lationship management system 
is from Bellevue, Wash.-based 
Onyx Software Corp., Proud 
said. Onyx uses a financial sys- 
tem from Pleasanton, Calif.- 
based PeopleSoft Inc. and an 
in-house waste information 
network. Data integration is 
handled by software from Bed- 
ford, N.H.-based Scribe Soft- 

| ware Corp. 


| TECHNICIANS AT WORK in Clean 
| Harbors’ control room. 
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tration. Despite hype about 
m-commerce during the past 
two years, there are only about 
200,000 m-commerce users 
out of the 123 million U.S. cell 
phone customers. 

Pugh agreed that Europe — 
which uses a single cell phone 
standard and where carriers 
have been able to sell services 
beyond voice service — offers a 
better opportunity for m-com- 
merce than the U.S. Since Euro- 
pean phones already use built- 
in smart cards to authenticate 
access to networks, Pugh and 
Chouinard agreed it would be 
easier and quicker to add pay- 
ment service in Europe. 

They emphasized that stan- 
dards developed by the forum 
would allow carriers and banks 
flexibility in choosing security 
and authentication 
with a key goal being the need 
to work on existing phones. D 


services, 


Proud said Clean Harbors 
developed the tools to better 
manage the complex, govern- 
ment-mandated paper trail 
needed for dealing with haz- 
ardous materials. 

“This is a highly regulated 
industry,” Proud said, noting 
that moving the paperwork on- 
line saves customers both time 
and money. 


High-Tech Tracking 


Clean Harbors has so far co- 
ordinated the anthrax emer- 
gency response and disposal 
effort by phone, Proud said. 
But when its trucks start to 
transport material — such as 
office furnishings and floor 
coverings from the NBC of- 
fices — information systems 
will play a big role in following 
the trucks’ movement. Clean 
Harbors uses an OmniTracs 
satellite tracking system oper- 
ated by San Diego-based Qual- 
comm Inc. 

Disposal sites in the U.S. that 
can handle anthrax are back- 
logged, so it’s not clear when 
Clean Harbors’ trucks will roll. 
But when they do, the com- 
pany will be able to electroni- 
cally track any deviation from 
the preplanned route. Drivers 
can send either an automatic 
alarm or an e-mail through an 
onboard computer. D 
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Staples Names C10 


Framingham, Mass.-based Staples 
Inc. has hired as its new Ci the 
man who helped create a competi- 
tor's e-commerce site. Paul J. 


Gaffney, a vice president at Schwab | 


Technology, an affiliate of San 
Francisco-based Charles Schwab 

& Co., was one of the creators of 
Delray Beach, Fla.-based Office 
Depot Inc.'s e-commerce operation. 
Gaffney will start at Staples Jan. 7. 


War Halves Pakistani 
Software Orders 


Pakistan's fledgling software indus- 
try is feeling the heat from the war in 
neighboring Afghanistan, as foreign 
customers cancel orders based on 
what industry officials have called a 
mistaken belief that violence is spill- 
ing over the border. Foreign business 
is down more than 50% since the 
Sept. 11 terrorist attacks on the U.S., 
said Syed Hamza Matin, president of 
the Pakistan Software Houses Asso- 
ciation. Since then, employers have 
sent home about 10% of the approx- 
imately 3,000 software engineers 
working on foreign projects, he said. 


H-1B Visa Record Set 


Despite the weak economy, the Im- 
migration and Naturalization Service 
last week said it approved 163,200 
petitions for H-1B visas during the 
fiscal year ended Sept. 30. That's a 
record, but It's short of the 195,000 
cap set by Congress. The INS could 
have approved more visas but closed 
the year with 29,000 pending appli- 
cations. Those will be counted 
against the current fiscal year's cap, 
which is the same as last year’s. 


FCC OKs Spectrum — 


The Federal Communications Com- 
mission last week voted to increase 
the amount of radio spectrum that 
wireless carriers can use in urban 
areas. The vote means that wireless 
carriers can now operate in the 55- 
MHz band in urban areas, up from 
the previous cap of 45 MHz. Rural 
areas already have a limit of 55 MHz. 


| heed’s 





| BY DAN VERTON 


OCKHEED MARTIN'S 
capture of the Pen- 
tagon’s $200 billion 


Joint Strike Fighter | 


(JSF) contract may 


be the most complex and de- | 
manding test of product data | 
| management software in the 
defense and aerospace indus- | 
| try, experts and analysts said. 


In winning the largest de- 


fense contract in history on | 


Nov. 2, Bethesda, Md.-based 
Lockheed Martin Corp., which 


| is partnering with Los Ange- 


les-based Northrop Grumman 
Corp. and U.K.-based BAE 


| Systems, defeated the team led | 


by Chicago-based The Boeing 
Co. And although IT played 
a critical role in Lockheed’s 
ability to produce a winning 


| concept for the advanced jet 


fighter, the upcoming design 


| and production phases will be 


the real test of how well Lock- 
software team per- 
forms, said experts. 

“When you firm up a design, 
that’s when you firm up your 
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Fighter Jet Contract a 
Proving Ground for IT 


Design, production present key challenges 


costs and the manufacturer's 


process capability and ability to 
produce,” said Mike Burkett, an 
analyst at AMR Research Inc. in 
Boston. It’s in the design phase 
that “you find out if your con- 
cept actually works,” he said. 

The Pentagon will scrutinize 
Lockheed’s performance dur- 
ing the upcoming design phase 
and as production of the esti- 
mated 3,000 jets ramps up in 
2009, said Burkett. The rollout, 
which will include the U.K. 
and other U.S. allies, will con- 
tinue for 25 years. 

Schedule and cost control, 
which are highly dependent on 
the use of collaboration soft- 
ware, will be critical to Lock- 
heed keeping the contract, 
Burkett noted. There’s also a 
remote chance that the compa- 
ny could drop the ball and lose 


| the contract, he said. 


Lockheed officials couldn't 
be reached for comment. 

Responsibility for keeping 
the program on track rests on 
the software that helped Lock- 


| heed snag the contract in the 


What's Next on Boeing's Agenda? 


Despite its loss of the multibillion- 
dollar JSF contract to Lockheed 
Martin, Boeing may still receive 
some critical IT-related work from 
the program as well as new revenue 
from efforts to boost commercial 
airline security, said analysts. 
Although there's still talk on 
Capitol Hill about forcing a split 
of the $200 billion JSF contract, 
analysts said Boeing's superior 
reputation for process and cost 
management will likely result in 
substantial subcontract work on 
the JSF program. In addition, the 
company is looking to extend some 
of its commercial airline IT pro- 
grams, such as its broadband Con- 
nexion service, to the burgeoning 
security arena in the aftermath of 


the Sept. 11 terrorist attacks, ana- 
lysts and company officials said. 

Speaking last week at the Gold- 
man Sachs Global Capital Goods 
Conference in New York, Boeing 
Chief Financial Officer Michael 
Sears said additional business seg- 
ments for the company will include 
an expansion of Connexion service 
to the government sector and an 
increased focus on global air traffic 
management. 

Connexion, a broadband satel- 
lite connection service initially de- 
signed to bring Internet access and 
video to passengers, could also be 
used to send real-time images from 
aircraft to ground stations, said 
Mike Burkett, an analyst at AMR 
Research. Although it's still in de- 
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THE $200 BILLION CONCEPT: Lockheed’s X-35 Joint Strike Fighter. 


first place. Metaphase from 
Structural Dynamics Research 
Corp. (SDRC) in Milford, Ohio, 
could eventually support up to 
50,000 users in 30 countries 
once the JSF program hits full 
speed, said Tim Nichols, man- 
ager of Aerospace & Defense 
Industry Marketing at SDRC, 
now a part of Electronic Data 
Systems Corp. in Plano, Texas. 

“When it goes full course, 
it’s going to be the most com- 
plex virtual enterprise ever 
conceived,” said Nichols. 
“These aircraft change every 
five years as _ technology 
changes. So tracking changes 


velopment, Connexion could po- 
tentially open up the security ser- 
vices business to Boeing, he said. 

Since 60% of Boeing's business 
is in the commercial sector, its in- 
creased focus on global air traffic 
management makes sense, said 
Burkett. Boeing is trying to leverage 
its IT programs to take over supply 
chain management for airlines as 
well as for other vendors, he said. 
Recent initiatives include Boeing's 
Global Airline Inventory Network for 
online supply ordering. 

In the end, Boeing will be able to 
absorb the loss of the JSF contract 
much better than Lockheed would 
have, according to a Nov. 2 report 
by Michel Merluzeau, an analyst at 
San Antonio-based Frost & Sullivan 
Inc. Boeing “is a more diversified 
and cash-rich company,” he noted. 

~ Dan Verton 





and reuse is absolutely critical.” 

Everybody — from the de- 
sign team to suppliers — needs 
to have access to the most re- 
cent data, 3-D models and 
drawings, said Erica Rugullies, 
an analyst at Giga Information 
Group Inc. in Cambridge, 
Mass. “Without a PDM (prod- 
uct data management) tool, 
they would be printing out a 
paper copy of a 3-D drawing, 
and a trading partner would be 
forced to re-create it,” said 
Rugullies. 

The Lockheed and Boeing 
JSF development teams both 
used Windchill Web-based 
portal software from Need- 
ham, Mass.-based Parametric 
Technology Corp. to integrate 
multiple PDM, enterprise re- 
source planning and database 
systems during the initial con- 
cept phase of the contract, 
which included the production 
of three prototype aircraft 
from each team. 

The design phase ahead will 
be one of the biggest chal- 
lenges Parametric’s software 
has ever encountered and will 
undoubtedly become a model 
for other industries, said Mike 
Brown, senior vice president 
of sales for aerospace and de- 
fense at Parametric. 

“Whether it’s the aerospace, 
high-tech or automotive indus- 
try, you really have the same 
kind of business issues that 


| you're grappling with,” he said. D 
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Lieberman Proposes 
$IB IT Security Fund 


Targets most-pressing 


cybersecurity issues | 


BY DAN VERTON 
WASHINGTON 
OSEPH LIEBERMAN (D.- 
Conn.), chairman of the 
Senate 
Affairs 


Governmental 


Committee, has 


called for the creation of 


a $1 billion IT fund that 
would enhance homeland and 
while 


information security 


| 
| 
| 
| 
| 
| 
| 
| 
| 


much-needed 
boost to the sagging economy. 
The Connecticut Democ- 
rat’s proposal would set up a 
fund that would be managed 
by the White House Office of 
Management and Budget and 
would be similar to one that 
was set up to help the govern- 
ment respond to the Y2k crisis. 
However, the money would be 
aimed specifically at jump- 
starting of the more 
pressing IT security require- 
ments throughout the govern- 


providing a 


some 


Cybersecurity Czar Pushes For 
More Spending on IT Protection 


BY MARYFRAN JOHNSON AND 
DEBORAH RADCLIFF 


PALO ALT ALIF 


U.S. cybersecurity czar Rich 
ard Clarke, warning that cyber- 
attacks on the nation’s critical 
IT infrastructure could poten- 
tially cause “catastrophic dam- 
age to the economy,” last week 
urged more spending on IT in- 
frastructure and security. 
Clarke, chairman of the pres- 
ident’s Critical Infrastructure 
Protection Board, also told a 
gathering here of about 150 se- 
curity privacy experts 
from business and government 
that he national 
identification card and wants 


and 


opposes a 


to reduce the opportunities for | 


anonymity on the Internet. 
Although the Bush adminis- 
tration has taken no formal po- 
sition on national ID cards, 
Clarke said most officials “feel 
it’s not a smart idea” to push 
for a single card. What he'd like 
to instead, he added, is 
broader use of strong authenti- 
for IDs 


see 
cation technologies 
such as drivers’ licenses. 
Speaking at the Trusted 
Computing Conference, hosted 
by Microsoft Corp., Clarke also 
strongly defended the pro- 
posed GovNet project, which 


| ernment network that would be 





isolated from the Internet. 

“We are not abandoning the 
Internet,” he said, adding that 
he envisions a GovNet system 
in which workers would have 
more than one PC on their 
desktops — one on a system 
open to the Internet and the 


| CLARKE: “Freedom isn’t free, and 
| security isn’t free, either.” 


| other on a closed-off and high- 


ly classified network. Clarke 
that if the GovNet 
proposal turns out to be a vast 
expense, it won’t be pursued, 
and he urged the audience to 


stressed 


| get involved in the request-for- 


information process under 
way this month. GovNet is “not 
intended to be a silver bullet,” 


he added, “but just one piece of 


the overall solution.” 


| ulation, 


ment and the private sector. 
The proposal has attracted 
the support of Sen. Robert 
Byrd (D-WVa.), who is expect- 
ed to include it as part of his 
economic stimulus proposal to 


help the nation recover from 


the setbacks caused by the 


| Sept. ll terrorist attacks. 


Word of Lieberman’s plan 
comes on the heels of a call 
from Harris Miller, president 
of the Arlington, Va.-based In- 
formation Technology Associ- 
ation of America, for Congress 


In his first speech since the 


| Sept. 1] terrorist attacks, Clarke 


said spending on IT security 


and infrastructure protection 


has to increase in both the pri- 
vate and public sectors. “Free- 


| dom isn’t free, and security is- 
would build a closed-loop gov- | 


n’t free, either,” he said, adding 
that unlike six weeks ago, “no 


| one is saying we shouldn’t pay 


more for security now.” 
IT security is just as impor- 
tant as the broader collection 


| of homeland security initia- 


tives, Clarke said, urging pri- 


| vate industry to play a promi- 


nent role in helping the gov- 


| ernment craft its plan for on- 


line security. 

“What do you want in the 
plan? How should we structure 
it?” he asked. 

But several attendees said 
they found Clarke’s call to ac- 
tion a little too vague in terms 


of how the private sector could 
| coordinate its security- and 


privacy-related IT efforts with 
those of the government. 
“Market forces are not nec- 


| essarily going to protect the in- 


frastructure,” observed one at- 
tendee from a large West Coast 
financial institution, who 
asked not to be named. “I’m 
suggesting that counter to reg- 
or even coinciding 
with regulation, that the gov- 


| ernment offer incentives for us 


to be good citizens, like tax 
cuts for those who conduct as- 
sessments and develop recov- 
ery procedures.” D 


to put some real money on the 
table for IT security improve- 
| ments. While Lieberman’s $1 
| billion plan falls far short of the 
| $10 billion Miller said is need- 
| ed to effect real change, Miller 
| said Lieberman is 
| definitely on the 
right track. 

“We would 
courage him to in- 
| crease the amount 
and to focus exclu- 
sively on govern- 
ment cybersecurity,” 
Miller said. “The rea- 
son he needs to focus 
on cybersecurity is 
that many other 
funding sources are 
being brought forward to ad- 
dress his other legitimate areas 
of concern, such as aviation se- 
curity and health care. But as 
far as we can tell, his initiative 
is the only one specifically fo- 
cusing on government cyber- 
security funding.” 


en- 


Sen. Lieberman's proposal covers 
funding in the following key areas: 

@ Air travel: Part of the money 
could fund an “early-warning de- 
tection system” for the aviation in- 
dustry that would identify suspect- 
ed terrorists if they tried to book 
flights. The system would include 
a secure intranet accessible to law 
enforcement agencies. It also 
would fund the use of biometrics- 
enabled smart cards to confirm 
the identities of passengers and 
cross-check fingerprints or facial 
patterns against terrorist watch 
lists. Funds could also pay for ad- 
ditional bulk-explosives scanners 
and other baggage-scanning 
equipment for airports. 

= Bioterrorism: The money 
could also be used to kick-start a 
national biological detection sys- 
tem to provide early warning of bi- 
ological terrorist attacks, accord- 
ing to the Lieberman proposal. 
Through enhancements to the na- 
tion’s communications infrastruc- 
ture, authorities could receive on- 
line training about how to respond 
to chemical, biological or other 
emergencies and tap into expert 
assistance through telemedicine. 

= Border control: There's also 
talk on Capitol Hill about using the 
money to purchase automatic 





| 
| 
| 
| 


SEN. LIEBERMAN 
says fund would 

boost IT defenses 
and the economy. 
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According to talking points 
being used to sell the Lieber- 
man proposal, the money in 
the fund could be spent only 
on projects to improve the fed- 
eral government’s information 
security systems, 
protect critical infra- 
structure or provide 
stronger defenses 
against natural and 
man-made threats to 
the nation. 

Alan Paller, direc- 
tor of the SANS Insti- 
tute in Bethesda, Md., 
expressed a lack of 
optimism about how 
the proposed funding 
would be used. “My 
concern would be the skill with 
which Washington consultants 
and IT vendors in particular 
might package every pet proj- 
ect as ‘security-enhancing, ” 
Paller said. “If there were a 
tough, rational culling process 
... I'd bea fan.” 


a, 


Where the Money Would Go 


scanning equipment for passport 
photos that could be linked to a 
national database of passport and 
visa holders. The Lieberman pro- 
posal calls for developing a data- 
base to link universities and the 
Immigration and Naturalization 
Service to immediately detect stu- 
dent visa violations. The high- 
speed communications enhance- 
ments could also link all border pa- 
trol, immigration and customs net- 
works and integrate data on illegal 
border crossings from remote 
monitoring equipment positioned 
in unpopulated border areas. 

= Transportation: The trans- 
portation sector, which has be- 
come one of the focus areas for 
law enforcement agencies on alert 
for possible terrorist attacks, could 
also benefit from the new funding. 
IT could provide for better traffic 
management if evacuation from an 
urban area were necessary and 
could help authorities develop a 
tracking system to monitor the 
movement of hazardous materials 
around the country. In addition, IT 
tools could provide real-time track- 
ing of U.S.-bound shipping con- 
tainers to allow better detection of 
high-risk shipments before they 
enter U.S. ports. 

- Dan Verton 
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ireless LAN Gear Offers 
Fivefold Increase in Speed 


But big users such as FedEx don’t plan to 
quickly shift from older, slower technology 


BY BOB BREWIN 
EW wireless LAN 
products on dis- 
play at 
week’s Comdex 


show will feature 
a quantum leap in throughput, 
from 11M to 54M bit/sec. Intel 
Corp. and Proxim Inc. will 
both showcase access points | 


and PC cards that take advan- 
tage of the technology. 

The new products, which 
operate under the IEEE 802.lla 


industry standard, branded as | 
Wi-Fi5 by the Wireless Ether- | 
Alliance | 


net Compatibility 
(WECA), gain their speed ad- 
vantage over the older 802.11b 


Continued from page 1 


Comdex 


that are “doing 
everything we can to get back 


organizers 


to business.” 

A random poll of 25 corpo- 
rate IT managers showed that 
among the companies that typ- 
ically send staffers to the Las 
Vegas Comdex event, most will 
continue to do so this year. 

“Comdex is just too impor- 
tant a show,” said Larry Kinder, 
executive vice president and 
CIO at New York-based Cen- 
dant Corp., whose holdings in- 


clude car rental company Avis | 
Group Holdings Inc., various | 


- Comdex/Fall-off 2001 


Comdex/Fall 2001 may see about 25% fewer visitors than 2000. 


hotel brands and Galileo Inter- 
national Inc.’s online reserva- 
tions system. Kinder said his 
company won't cut back on its 
Comdex attendance. 

Two companies even indi- 
cated that they will increase 
their presence at Comdex this 
year. Edward Flynn, CIO at 
chemical and machinery man- 
ufacturer FMC Corp. in Phil- 
adelphia, said his company will 


this | 


wireless LANs (Wi-Fi) by op- 
| erating in a higher frequency 
band. Wi-Fi uses the _ unli- 
censed 2.4-GHz frequency 
band, while the newer Wi-Fi5 
operates in the unlicensed 5- 
GHz band. 

Wi-Fi5 gains speed at the ex- 
pense of range, according to 
David Cohen, chairman of the 
San Jose-based WECA. Higher 
radio frequencies translate 
into shorter range, he said, es- 
timating that Wi-Fi5 will cover 
only half the area covered by 
Wi-Fi wireless LANs. 

But since the typical wire- 
less LAN installation operates 
where 





indoors, coverage is 


send two _ representatives, 

“which is higher than normal.” 
| Susan McKay, vice president 
| of customer and information 
systems at medical device 
manufacturer Aircast Inc. in 
Summit, N,J., said her company 
| will make its first trip to 
| Comdex. “Aircast is a small 
| company, so three of us going 
| to Comdex was a big decision 
for me,” McKay said. “Howev- 
er, we don’t want to get so busy 
| that we forget about the fu- 
| ture.” McKay added that she’s 
interested in seeing “how the 
leaders in technology are re- 
sponding to the changes in the 
marketplace.” 

Some IT managers said their 


Number of attendees 
Number of exhibitors 


Exhibition space 
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| measured in hundreds of feet, 
Cohen said, the shorter range 
of the new technology should- 
n’t make much of a difference. 
| If it does, he said, enterprises 
could install more access 
| points — which Intel 
priced at just under $700 — for 
the newer technology. 

How rapidly users will move 
to the faster systems is open to 


has 


| question. 
Memphis-based FedEx Corp. 
| is in the process of installing 
| wireless LANs throughout its 
hubs terminals, and 
even onboard its air- 

craft. Ken Pasley, 
| director of wire- 
less develop- 
ment at FedEx, 
sees the 5-GHz 
band used by 
Wi-Fi5 as a mi- 


and 


staffers to Comdex, and several 


back on travel in general. 
“The economic slowdown 
has been a lot more severe than 


been since Sept. ll,” said Wolly 
Morin, CIO at New York-based 
AnnTaylor Stores Corp. Morin 
said his company typically 
sends at least one staffer to 
Comdex, but it won't this year. 

“Money is tight,” said Pat- 


e-commerce at Landstar Sys- 
tem Inc., a trucking company 


to pick and choose what's im- 
portant to attend.” He added 





200,000 
2,350 


Over 1 million 
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150,000 
2,000 


750,000 
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THE PROXIM ACCESS POINT 
can achieve 54M bit throughput. 


companies will send fewer IT | 
| anyone to Comdex this year. 
indicated that they’re cutting 


rick Wise, vice president of 


in Jacksonville, Fla. “You have | 





gration path that will eventual- 
ly help the company move 
away from the spectrum clut- 


| ter he expects as more compa- 
| nies adopt the 2.4-GHz band. 


But for now, FedEx is com- 
fortable with Wi-Fi, Pasley 
said, explaining that FedEx 
hasn’t fielded any applications 
that tax the 1M_ bit/sec. 

throughput, and 
that includes rela- 
tively high-band- 
width aircraft 
maintenance ap- 
plications. 

United Parcel 
Service Inc. in 
Atlanta, which 
is in the process 

of _ installing 

what it claims 
is the world’s 
largest wire- 


‘COMPUTERWORLD November 12, 2001 


| less LAN infrastructure based 


on Wi-Fi, “is always looking at 
new technologies, and 802.lla 
is no exception,” said spokes- 
woman Joan Schnorbus. “The 
bigger bandwidth and cleaner 
spectrum are appealing.” 

But, Schnorbus said, “there 
is no driving need for it right 
now. For the foreseeable fu- 
ture, we are using 802.11b.” 

Taizoon Doctor, general 
manager at Intel’s mobile com- 
munications division, said he 
believes enterprises that rou- 
tinely transmit bandwidth- 
hungry files such as computer- 
aided design applications will 
be attracted to the higher 
bandwidth of Wi-Fi5 because 
they already operate on 100M 
bit/sec. wired LANs. 

Amy Martin, a_ spokes- 
woman for Sunnyvale, Calif.- 
based Proxim, said the band- 
width offered by Wi-Fi5S is 
needed to handle even ordi- 
nary office applications such 
as PowerPoint slides, the dis- 
tribution of which “can bring 
an ordinary wireless network 
toahalt.”D 





that his company won’t send 


Randy Richardson, senior 


vice president of information 


| services at The Talbots Inc., 
| said the business climate has 
anybody thought it would have | 


prompted the Hingham, Mass.- 
based retailer to scale back on 
all nonessential travel expens- 


|} es. “I usually go to Comdex 
| every two or three years, and 


we usually have a presence 
most every year,” Richardson 
said. This year, Talbots won’t. 
Mostafa Mehrabani, CIO at 
TRW Inc., a $17 billion technol- 
ogy, manufacturing and ser- 
vices company in Cleveland, 
said his firm will send two to 
four staffers, about half the 
number it sent last year, largely 
due to the economic down- 
turn. Their chief areas of inter- 


|| est will be collaboration tools, 


wireless technology and hand- 
held devices, he said. 

As attendees scope out cut- 
ting-edge products, they will 
find fewer of the newer ven- 
dors that have supported the 
dot-com industry. But large 
vendors that normally have a 
major presence at Comdex will 





continue to do so. Hewlett- 
Packard Co. spokeswoman Ann 
Finnie said her company nego- 
tiated its floor space and press 
room a year ago, as most com- 
panies do. “We’re not cutting 
back at all,” she said. “It’s busi- 
ness as usual at Comdex.” 

Microsoft Corp. actually 
plans to increase the number 
of staffers and support person- 
nel manning Comdex from 300 
to 500, company spokesman 
Corey duBrowa said. “We real- 
ly want to maximize our one- 
on-one time with customers at 
this event,” he said, noting that 
Microsoft plans to focus on 
business software more than 
consumer products and games. 

“This goes back to our re- 
search that shows that the at- 
tendees that go to Comdex rep- 
resent businesses of many dif- 
ferent sizes,” duBrowa said. D 
Senior reporter Bob Brewin 
contributed to this story. 

Visit our special 


ick 
Que Comdex page: 


www.computerworld.com/q?a1260 
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E-Mail @30 


your eee here 


Since its 1971 debut, internet e-mail has had a profound 
impact on business and society. In this three-page report and 
on our Web site, we examine that impact and what's to come. 





30 Years 
Of E-Mail 


Changes the | 


Enterprise 


BY RUSSELL KAY 
USINESS HAS always 
been in a_ hurry, 
sO companies are 
quick to adopt the 
fastest communica- 

tions methods available. Elec- 

tronic mail is now a vital com- 
ponent of daily operations. 

Marking the 30th anniversary 

of Internet e-mail, we have to 

ask: How did we ever do busi- 
ness without it? 

“Both from a personal and a 
business standpoint, e-mail 
has revolutionized how we do 





business,” said Brian Brylow, 


senior vice president at Robert | 


W. Baird & Co. a financial ser- 
vices firm in Milwaukee. 
“What used to take days or 
weeks is now delivered in 10 
seconds anywhere around the 
globe,” he continued, adding 
that “e-mail is much cheaper, 
delivering documents and at- 
tachments in seconds at no 
cost instead of using expensive 
overnight delivery services.” 
E-mail hasn’t created the pa- 
perless office, but it has 
helped. “Certainly there are no 
more internal memos on pa- 
per,” said Dan Black, director 
of e-commerce systems at 
United Networks, a wholly 
owned subsidiary of United 
Air Lines Inc. in Chicago. He 
said it has also changed the 
way we communicate. “It’s ac- 
tually deformalized the way 
we communicate. Formerly 





you'd take a lot of time to com- 
pose a letter, but now people 
write an e-mail [using incom- 
plete] sentences. ... [It’s] not 
necessarily better, but [it’s] 
quicker for sure.” 

E-mail beats the telephone 
because it can connect people 
separated not only by space 
but also by time. E-mail en- 
courages the fast turnaround 
of ideas and opinions, and it 


A History Lesson | 


Electronic messaging among users within a single com- 
puter time-sharing system at a university or a large com- 
pany such as IBM has been around since the early } 
1960s. However, e-mail among computers, as we think i 
of it today, came into being in 1971 when Ray Tomlinson 
at Bolt Beranek and Newman (now Genuity Inc. in i 
Woburn, Mass.), became the first person to send ames- i 
sage from a computer on one network to a computer on 


another network. 
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makes possible extended dis- 
cussions between people who 
aren’t in physical proximity. 
“For deferred interaction, 


e-mail is king,” said Vinton | 


Cerf, senior vice president of 


Internet architecture and tech- | 


nology at WorldCom Inc. 


| Add in wireless e-mail on | 
| handheld devices, said Brylow, 


and it’s clear that “e-mail is 
now the personal communica- 


| tion medium that you can take 


anywhere.” 

But e-mail is neither as fleet- 
ing nor as private as might be 
suggested by the way most 


| users dash off their messages. 


“We store every e-mail forev- 
er,” said Black. “It’s archived to 
tape automatically, whether 
the end user deletes it on the 
PC or not.” 

Thus, e-mail represents a 
vast and indiscriminate corpo- 
rate memory, determinedly 
holding on to everything that 
passes through it. 

In regulated industries like 
financial services, e-mail 
archiving is mandated. “The 
biggest problem,” said Brylow, 
“is the need to keep a copy of 
everything.” Besides archiving, 
he said, “this requires systems 
that let an end user create an 
acknowledgement or reply, 
then determine whether it is 
safe to distribute.” 


The Dark Side 


Spam, that never-ending 
mass of unwanted electronic 
junk mail, has become a large 
enough problem that a whole 
industry has been developed 
to help organizations filter out 
and block such communica- 
tions. Other productivity im- 
pediments include time-con- 
suming personal e-mail and 
the way people copy and mass- 
forward jokes and images to 


local network. 
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| es | 
Why E-Mail 
Works Well 


> It’s a push technology: 
It comes to you. 


>It waits for you: 
t's asynchronous. 

> It’s one-to-many: It lets 
you communicate with 
many people at once. 

> it’s almost free: Text- 


based communication is 
very inexpensive. 


SOURCE: HTTP://LIVINGINTERNET.COM/E/EP. HTM 


everyone they know. 

Also, e-mail’s turnaround 
speed is a mixed blessing. Im- 
mediate responses can be in- 
temperate. It’s so easy to press 
the Send button, even acciden- 
tally, but generally impossible 
to call back a message once it’s 
been sent. 

M. Lewis Temares, vice 
president, CIO and dean of the 
school of engineering at the 
University of Miami in Florida, 
said that “in some ways, 
[e-mail] has impeded commu- 
nication, because executives 
sometimes make  arrange- 
ments and commitments and 
forget to tell or check with 
their administrators.” 

Just the sheer number of 
e-mail messages can be a prob- 
lem. David Ferris, president of 
Ferris Research Inc., a San 
Francisco-based analyst firm 
specializing in communica- 
tions and collaboration tech- 
nologies, pointed out that 
“e-mail overload can get peo- 
ple out of control.” D 


To read about the future of messaging, 
e-mail security challenges and more, 
see pages 20 and 25. 


e-mail, because many other people were involved at the 
time and were working on the same problems. However, 
: Tomlinson is the undisputed source for the way we write 
e-mail addresses. Limited by a caps-only printing termi- 
+ nal, Tomlinson decided on the now-ubiquitous @ symbol 
(shift 2) to separate the user name from the computer 

name and to indicate that the address was outside the 


“The @ sign seemed to make sense,” Tomlinson later 
recalled. “I used the @ sign to indicate that the user was 


‘at’ some other host, rather than being local.” 


It's not entirely accurate to say that Tomlinson created 


~ Russell Kay 
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Automatically eliminate disk fragmentation and unleash full system speed — 
on one desktop or across your entire site! 


EW DISKEEPER® 7.0 “Set It and Forget It”® disk defragmenter for NUNES Rees 


Windows® is so advanced it runs itself, precisely when needed. It’s like ® New! “Push Install” eliminates the time and 
hiring an expert to constantly monitor your system’s performance and keep cost of manual installation with fast, two-click 
it at peak levels. New Diskeeper 7.0 defragments drives so thoroughly and remote operation. 
with such blazing speed, it makes manual “built-in” technology completely New! Microsoft® recommended lightning 
obsolete. fast boot-time defrag for important system 
files — remotely control & schedule across site. 
Exclusive: “Smart Scheduling”™ monitors and maintains peak 
system performance intelligently and unobtrusively 
without requiring assistance. 
Certified at the highest level for Windows XP 
2000/NT°® and fully compatible with Windows 9X. 


In today’s economic climate, it’s just as important to know that Diskeeper 
7.0 can extend the productive life of your systems up to three years, 
significantly reduce your TCO and cut help desk calls in half. It’s one reason 
9 out of 10 corporations use Diskeeper over any other defragmenter. In fact, 
it costs money every day your machines are running without Diskeeper. 
Follow the link on this page to buy it now. 


www.cw1.diskeeper.com 


“Disk fragmentation can cause performance problems. You should consider | 


2 2 ] . Yo 
Executive {hm running a defragmentation program on a regular basis. 
Tad — Microsoft Windows NT Server Res 
Software For more information visit our web site at 


Focused Development of System Management Tools www.execsoft.com ¢ 1-800-829-6468 
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YOUR e-BUSINESS. 


SYBASE e-BUSINESS SOFTWARE. BECAUSE EVERYTHING 





THE STRAIGHT GOODS ON DATABASES. 


DOWNTIME TIES YOU UP. 


Unlike the department store, the 
mall or warehouse, e-Business is 
by its very nature 24x7. Someone, 
somewhere right now, is shopping 
for something. Whether it's a shirt 
or a sales report. 


This poses some interesting 
questions for everyone managing 
a database. 


If your e-Business is constantly 
online, how do you handle routine 
DBMS chores like maintenance? 


How do you add new components 
and resources without disrupting 
your current customer transactions? 


Fortunately, Syoase ASE (Adaptive 
Server Enterprise) 12.5 answers 
these questions. 


ASE lets you perform routine 
maintenance operations and even 
change configuration parameters 
while the database is online. 


You can transfer users from your 
primary system to your backup 
system without missing a beat. 
Even if they're in the middle of 
a transaction. Your employees 
won't even know it's happening. 
And neither will your customers. 


In case of emergency, ASE's cluster 
architecture provides fail-over to a 
backup server without losing any 
non-committed data or severing a 
single user connection. 


Bottom line: ASE delivers continuous 
availability to everyone who needs 
it whenever and wherever they 
need it. 


INSECURITIES BRING 
YOU DOWN. 


The sad reality is an e-Business 
address is like a target painted 
on your back. The more data 
collected in your database server, 


the more paths of access to that 
server, the more tempting the 
target is to intruders. 


ASE recognizes the challenge 
and responds appropriately. 
You'll find more security 
features than a Secret 

Service detail. Including, 

but not limited to: 

protection from wiretaps, 
accidental disclosure and 

prying from thieves and vandals. 


Sybase ASE provides a row-level 
security mechanism that allows 
you to define how your database 
is accessed. It's a feature you'll 
find missing in most competitive 
products. 


ASE also features link encryption 
using SSL and PKI certificates. 
While virtually invisible to users 
and developers, your users’ entire 
interaction with the database is 
fully encrypted. 


So your business is safe for business. 
XML MEETS A DEAD-END. 


This may seem too obvious to 
speak of, but still 
worth noting. Your 
database needs to 
play nicely with the 
many Web-driven 
technologies that 
make up today's 
e-Business language. 
Obviously this 
includes both Java 
and EJB. 


But now more than ever it means 
XML, the emerging standard for 
encoding information for document 
interchange. If your database is not 
totally XML fluent, you're going 

to have a hard time doing B2B 
commerce on the Internet. 


Sybase ASE makes XML rock in 
ways other databases simply don't. 
Sybase ASE has a complete XML 


framework for storing, managing 
and retrieving XML directly to and 
from the database. 


Data stored in the database can 
be retrieved as XML allowing for 
easy integration of your existing 
information with your new Web 
applications. 


A general XML-Query facility (XQL) 
allows you to easily query XML data 
whether it's stored in the DBMS, 

a flat file or even a URL. Bottom 
line: faster development times, 
faster access to the information 
you need. 


HIDDEN COSTS BITE. 


In a time when everyone is 
searching for new efficiencies, 
Sybase ASE delivers real value. 


It reduces costs by the very nature 
of its 24x7 design. It ensures that 
your business never goes down. It 
delivers fast backup and recovery. 
It utilizes hardware resources 
efficiently. But even before you 
get to all of that it saves you time 
and money in the traditionally 
costly development process. 


If e-Business is 
going to be a 
critical part of 
your success this 
year, ASE has a 
critical role to play. 


To find out more 

about how Sybase 

ASE can help you 

quickly deploy and 
manage a successful e-Business, 
visit www.sybase.com/breathe or 
call 1-800-8-SYBASE. We'll make 
sure you get a database that won't 
choke your e-Business. 


@ SYBASE 


Information Anywhere 


2001 Sybase, Inc. All rights reserved. All trademarks are the property of their respective owners. 


WORKS BETTER WHEN EVERYTHING WORKS TOGETHER? ; 





20 


Real-time is the 
future, but so are 


storage headaches 


BY CYNTHIA MORGAN 
Few doubt that e-mail 
transformed business during 
its 30-year history — and that 
transformation is continuing. 
New messaging technologies, 
and the problems they bring, 
will likely have an equally sig- 
nificant impact on the way 
businesses work in the future. 
the few years, 
messaging systems will em- 
brace real-time operation in 
addition the traditional 
store-and-forward model and 
will be woven into virtually 
every major application that 
businesses use. These systems 


has 


Over next 


to 


will increasingly incorporate 


other forms of communica- 
tion, such as mobile/wireless 
systems, telephony, fax, speech 
recognition and rich media. 
And messaging managers will 
face one of the most critical is- 
sues in IT today: how to cap- 


ture, save and mine the rich in- 


formation stores these systems | 


accumulate over the years. 
New types of messages will 
add 
message storage systems, caus- 
ing problems for IT managers, 


to already-overloaded 


experts say. 


| unusual 
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What Lies Ahead for the Messaging Enterprise? 


“People are using their in- 


boxes not only for messaging, | 


but also for file storage,” said 
Andre Cyr, senior systems ad- 
ministrator at Bowman Capital 
in San Mateo, Calif. “It’s not 
for our analysts to 
save 4GB, more than 100,000 
messages, in a year.” 

Most companies “are still 
trying to solve the message 
storage problem by using big- 


| ger servers or limiting the size 


of employee mailboxes. Ulti- 
mately, this is a strategy that 
Radicati, 


will fail,” said Sara 


| CEO of The Radicati Group 


Inc., a consulting and research 


The Future 


Messaging is evolving 
quickly on several fronts: 
> Real-time collaboration 


> Rich media (streaming 
audio and video) 


> Unified messaging 
» Speech recognition 


> Integration into other 
platforms, such as wire- 
less and telephony 


This evolution will 
heighten already-critical 
problems in: 


> Storage 
> Security 
> Administration 


| tion, 





| [customer 
| agement and] accounting,” said 


firm based in Palo Alto, Calif. 
Existing plat- 
forms can efficiently store and 


messaging 


retrieve about a year’s worth of | 


messages. But an organization 
must generally handle five to 
seven years of business-critical 
messages. Products that can 
handle the archiving and fast 
search-and-retrieval of such 
massive stockpiles of informa- 
including Enterprise 
Vault from KVS Inc. in New 
York, will grow rapidly in pop- 
ularity, Radicati predicted. 


“We're using the Vault 


what’s almost a parallel collab- 
orative universe, one that right 
now, the IT department has 
very little control over. When 
they start downloading busi- 


the next few years,” she said. 
Corporations that adopt uni- 
fied messaging systems will al- 
most certainly change as a re- 
sult, Radicati added. “Gather- 
ing all these technologies into 
a single solution will force IT 


| departments to evolve, to take 


ness documents and reaching | 


| business decisions through IM, 


archiving system to siphon off | 


messages older than one year,” | 
said Cyr. “[A user] can ask for 


every e-mail that uses the tick- 
er symbol MSFT in a given pe- 
riod and retrieve all those mes- 
sages within 10 
stead of the 20 the 30 minutes 
it would take from Outlook.” 
Instant response is becom- 


seconds in- 


ing increasingly important for | 


| big companies. “Real-time col- 


laboration is the hot button for | 
the future. It’s being built into | 


| sales force automation tools, 


relationship man- 
Robert Mahowald, an analyst 
at IDC in Framingham, Mass. 
Instant messaging’s 
mous popularity has helped it 
make its way into organiza- 


enor- 


tions well before its formal ac- 
ceptance by IT departments. 
building 


“Employees are 


they’re sending that valuable 
information of 
the enterprise,” Ma- 
howald warned. “IT 
managers are right 
to scream about it, 
but they need 
take control.” 
Hewitt Associates 
LLC, a human 
sources consulting 
firm in Lincolnshire, 
Ill., rolled out Lotus 


out 


to 


re- 


Software Group’s SameTime 
real-time collaboration service 
to about 14,000 seats this sum- 
mer, said technical architect 
Ryan Mitchell. “We found us- 
age exploded,” he said. “We 


| have specifically turned off the | 
| capability 


to connect to 
{America Online Inc.’s Instant 
Messenger], so we keep it in 
the company — for now.” 
Increasingly, said Radicati, 
large organizations are think- 
ing about adopting unified 
messaging systems that inte- 
grate many technologies, in- 
cluding instant messaging, into 
a single user mailbox. “The 
convergence of e-mail, voice 
mail, mobile messaging, fax 
and rich media will be key in 


| 


FACT 


of business 
Internet users check 
their work e-mail 
when they're on 
vacation. 


SOURCE: 
DATAQUEST INC. 
SAN JOS! 





responsibilities for telephony, 
webcasting, rich media and 
other services that are general- 
ly considered non- 
IT. It could have 
broader political 
implications for the 
entire company.” 
Inified messag- 
ing systems will be- 
come more impor- 
tant as the number 
of telecommuters 
grows. In a recent 
survey of 1,953 IT 
workers by Bloomington, 
Minn.-based Techies.com Inc., 


| 48% of the respondents said 


they telecommute at least part 
time. And according to Radi- 


| cati, the growing number of 


mobile workers will strongly 
influence the need to combine 


| all communications into a sin- 


gle resource. 

“Everyone wants a single lo- 
cation to do all their work, and 
we were considering unifying 
voice mail and e-mail next 
year,” said Cyr. “But we can’t — 
it would only contribute to the 
storage problem we're already 
having.” D 


Morgan is a freelance writer 
and consultant in Minneapolis. 


E-MAIL ADMINISTRATION 


Managing the Messaging Deluge 


BY JENNIFER DISABATINO 
At the beginning of the 1990s, manag- 
ing e-mailboxes wasn't much different 
than managing traditional mailboxes. It 
was just another administrative duty 
delegated to secretaries and office as- 
sistants 

“Having come out of a convenient 
little executive toy in the last decade to 
an infrastructure-critical application is 
{e-mail's] biggest accomplishment of 
the last decade,” said Michele Ruben- 
stein, president of the EMA, formerly 
the Electronic Messaging Association 
and now a forum within Menlo Park, 
Calif.-based The Open Group. 

“When you're looking at companies 
that have tens of thousands of users, 


you can literally stop business if e-mail 
goes down,” Rubenstein said 

“The number of users has proliferat- 
ed from hundreds [in one company] to 
hundreds of thousands when you think 
about customers and suppliers,” said 
Jack Cooper, CIO of Bristol-Myers 
Squibb Co. in New York 

“Reliability of the systems is always 
a challenge because it's something 
that people are always looking at,” said 
Ryan Mitchell, a former e-mail adminis- 
trator at Hewitt Associates LLC in Lin- 
colnshire, Ill. 

Early business use of e-mail was 
strictly inside the corporation. E-mail 
software wasn't built to exchange mes- 
sages between systems. For adminis- 


trators, it kept things simple. Then 
came standards. Standards allowed 
everyone to send e-mail to anyone, 
since we all use the same protocol to 
transfer e-mail, Secure Multipurpose 
internet Mail Extensions. In addition to 
the security implications, administra- 
tors must now contend with the mas- 
sive volume of messages that need to 
be stored, Mitchell said 

“The amount of storage, and the se- 
curity and the metadirectory that keep 
the directory accurate becomes an im- 
portant task,” Cooper said. “You have 
to carefully monitor and access the 
e-mail storage. If not, it can become a 
huge hog of resources.” 

Some companies, like Chicago- 


based The Boeing Co., put strict limits 
on their users’ mailboxes. Others sim- 
ply warn a user when his mailbox has 
gobbled up too much disk space. But 
volume also brings another problem. 

Companies need to get client and 
partner lists integrated into their direc- 
tories, said Dana Gardner, an analyst 
at Aberdeen Group Inc. in Boston 

E-mail administrators must set up 
each user account, an encryption key 
associated with that account and the 
user's access rights. Some also man- 
age what kind of information gets out- 
side the firewall. Scanning software 
can do this, but the task has as much 
to do with establishing policies as with 
technology, and that creates more 
work for the administrator. 

It's almost impossible to keep track 
of what comes in, and, just as impor- 


tant, what goes out. A digital rights 
management system, software that 
protects intellectual property from fly- 
ing out onto the Internet, is one solu- 
tion, but it requires role management. 

“The issue of role management is, in 
my opinion, tied in with the whole con- 
cept of identity management,” Ruben- 
stein said. “That ID can be an entity 
like a router or a person, or it could be 
a group. How do you manage it? | don’t 
always know [my partners]. | haven't 
done business with them for 20 years, 
| may only do business with them once 
in a lifetime.” 

The fact that you can get at mail in 
many ways from many places “distrib- 
utes intellectual property to places 
you'll never be able to manage it,” said 
Mitchell. “We're trying really hard to set 
policy, but policy only goes so far.” 





Then you found out 
they owned the road. 


Then it turned out 
be a dead end. 
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Sun’ ONE. The software platform that'll 
take your IT infrastructure on a pretty sweet ride. 


A lot of companies are out there trying to sell you an “integrated Web Services 
platform.” But what they're really trying to do is lock you into theirs. Of course, 
integrating your information assets will allow you to offer more services, get bigger 
Savings and earn greater profits. You'll also get better customer service, tighter 
Supply chains and achieve increased productivity. But how do you do it without 
ripping out and replacing everything? And how do you make it future-proof? 
Sun” ONE is the answer. 


Visit www.sun.com/sunoneinfo to register to receive the Sun ONE starter kit and join the online Sun ONE community. 








IT’S THE FUEL-INJECTED JAVA™ 
AND XML SOFTWARE PLATFORM. 


Sun ONE is a software platform of rock- 
solid products that lets you integrate 
whatever services you demand. And 
you can leverage the power of your 
legacy systems to launch services today 
without locking you into a dead-end 
solution tomorrow. Sun ONE includes 
the iPlanet™ product portfolio, with the 
most popular LDAP directory server on 
the market, and Forte” for Java™ tools, 
the quickest way to write Java apps 
anywhere. And it’s all built with Java 


and XML technologies, supports SOAP, 


WSDL and UDDI, and runs on Solaris,” 


the #1 UNIX® operating environment 





OPEN STANDARDS MEAN 
YOU'RE IN THE DRIVER'S SEAT. 


Unlike some people out there, we don’t 
claim to know everything that’s down 
the road ahead. We build our products 
to be open and integratable, meaning 
they can work with any of the leading 
software products available today 
The Sun ONE platform is optimally 
engineered to work together, and with 
whatever other standards-based prod- 


ucts you have in the platform 


Sun|ONE 


Open Net Environment 


WE'RE A FULL-SERVICE STATION. 


| SO COME ON BY. 


Our platform is designed tc 
mplemented by Sur 

Enterprise Service Professionals, a 

as by your favorite iFor 

ntegrator or reseller, and deployed reliably 
and securely as a SunTone™ Certified 
solution. We know how to integrate 
network architecture better than anyone 
Now, with Sun ONE, we're launching 
you into a whole new realm of services, 


savings and greater profits 


take it to the n® SS 
& SUN 


microsystems 





What makes Sun ONE go? 


Sun ONE is a combination of vision, architecture, product portfolio and expertise for the creation 
and deployment of services on demand. Here’s what's under the hood: 
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Sun Professional Sun ONE expertise 
Services helps you meet the 
demands of desiar 
menting architectures for long-term 
success. Around the globe, customers 


leverage Sun Professional Services” to 


gain competitive advantage by cre- 


ating customized Sun ONE solutic 


that are tailored to their business 
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Forte 


The Forte tools deliver a modular J2EE development 
environment to build and assemble services for multi-tier 


deployment — from Web-based front ends to database 


and other back-end application 


Visit www.sun.convsunoneinfo to register to receive the Sun ONE starter kit and join the online Sun ONE community. 


iPlanet Directory Server 


The iPlanet Directory Server is a 
about community, identity and profile 
management. It delivers the user 
management infrastructure that han- 
dles high volumes of comn 

As the 


information industr 


rated LDAP directory, it is capable of 
managing millions of entries and 
thousands of queries per second 


per server 


Sun’s industry-leading 
Java technologies allow 


< you to create end-to 
—— 

JAVA end pl atform solutions 
7 for the delivery of Web 


Services from smart cards to 


mobile devices to desktops and 
servers. And the new collection of 


XML-based Java APIs lets millions 


of developers create and deploy 


services with true application and 


data portability 


As the industry's 
#1 rated UNIX 


operating envi- 


ye 
<= 
SOLARIS 


ronment, Solaris 
is the foundation of Sun ONE. It 
delivers new levels of performance 
in scalability, availability, manageability 
and security. Through Sun Management 
Center, Solaris Resource Manager™ 
and Solaris Bandwidth Manager 
software, system resources can be 


easily and effectively managed 
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SPECIAL REPORTE-Wi 


E-MAIL SECURITY 


The Wild, 
Wild West 


BY JENNIFER DISABATINO 


When the first e-mail system was cre- 


ated on the Arpanet, security wasn't 


really a problem. Only researchers and 
some government workers had access 


- it was essentially a closed network 


While there were abuses, the potential 


for security breaches was minimal. 


“It was point to point,” said Michele 
Rubenstein, president of the EMA, for- 


merly the Electronic Mes- 
saging Association and 
now a forum within Menlo 
Park, Calif.-based The 
Open Group. 

“The next phase of 
e-mail security was actu- 
ally less secure because 
the Internet began to 
grow,” Rubenstein said. 

With the exception of 
Lotus Notes, which was 
used point to point within 
organizations and always 
had some sort of encryp- 
tion, there was no control over what 


employees sent out, where they sent it 


or what they received. 


“Right now, | think we're going more 
on faith than on anything else,” Ruben- 


stein said. 

Whether it’s a virus or 
intellectual property, 
companies still struggle 
to control what comes 
into and goes out of their 
networks. 

Anne German, vice 
president of applications 
services in the IT depart- 
ment at AFLAC Inc. in 
Columbus, Ga., said 
opening up the corporate 
e-mail system to the In- 
ternet was her biggest 
security challenge. 


AFLAC generates 15,000 to 20,000 


e-mails per day. Of those, 5,000 to 
10,000 are sent externally. 

Thanks to that traffic to and from 
the Internet, in September alone 


AFLAC had 450 hacking attempts and 


more than 20 viruses. AFLAC scans 
for viruses at the gateway and scrubs 
virus-prone extension types such as 
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SOURCE: THE GALLUP 
ORGANIZATION 
PRINCETON, N.J 
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exe. “We don't receive executables, 
period,” German said 

Protecting AFLAC’s intellectual 
property assets from escaping the cor- 
porate e-mail system is also a primary 
concern. German said her e-mail sys- 
tem scans all messages for keywords 
and content internally between desk- 
tops and as messages pass to and 
from the Internet 

“We have gotten a lot heavier con- 
trols as to what information is allowed 


out and allowed in. We have fairly good | 


scanning to know what is going out 
and coming in,” German said 


Virus-scanning software at the gate- | 


ways to the Internet, be- 
tween desktops and on 
servers offers some pro- 
tection, but users who 
download infected per- 
sonal e-mail still put their 
companies at risk. 

“It's the wild, wild 
West,” said Ryan Mitchell 
at Hewitt Associates LLC 
in Lincolnshire, Ill. 
Mitchell was a Lotus 
Notes administrator for 
seven years. 

Encryption may not be the answer 
because, with competing encryption 
standards, users from different organi- 
zations can't share encrypted material 
easily, if at all. 


“Until security becomes as transpar- | 


ent as typing an address, 
users just aren't going to 
do it,” Mitchell said. “[En- 
cryption] key manage- 
ment is a huge issue. . 
Until that panacea of the 
key server in the sky 
shows up, | think it's go- 
ing to be difficult to do 
encryption.” 

EMA is developing 
public-key infrastructure 
interoperability standards 
with users like The Boe- 
ing Co. in Chicago. The 
goal is to make it possible 
for companies to communicate and 
share information securely with their 
partners, said Rubenstein. “EMA and 
[the European chapter of] EMA collab- 
orated on a paper that delineates what 
users see as the barriers to electronic 
business today. Those barriers are lo- 
cated in the messaging and security 
areas,” Rubenstein said. 





these stories. 
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For more coverage of e-mail, includir.g an interview with Vinton Cerf 
and further analysis of e-mail’s impact on business and society, and to 
access a forum where you can share your views on the topic, visit 
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Four Decades of E-Mail 


1965 

Tom Van Vieck and Noel Morris 
create a Mail command for the 
Compatible Time-Sharing System 
at MIT. 


Fall 197] 

Ray Tomlinson writes a program 
to send messages across a dis- 
tributed network and chooses the 
@ sign to indicate an address out- 
side the local network. 


a 
1973 
After just two years, e-mail com- 
prises 75% of all Arpanet traffic 
among 23 universities and gov- 
ernment research centers. 


Vinton Cerf and Bob Kahn create 
TCP/IP, coin the term Internet.¥ 


1976 

The U.S. Department of Defense 
decides that TCP/IP will be the 
only protocol used on Arpanet. 


February 197 

“In anew kind of British invasion, 
Queen Elizabeth Il of England be- 
comes the first head of state to 
send an e-mail message.” (U.S. 
News & World Report, March 22, 
1999) 


Fall 1976 
Jimmy Carter and 
Walter Mondale use 
e-mail every day dur- 
ing their campaign 
to coordinate itiner- 
aries. A single mes- 
sage costs $4. (U.S. 
News & World Re- 
port, March 22, 
1999) > 


rata 


1979 

Usenet created at the University of 
North Carolina with three news- 
groups. ¥ 


usenet > com 


a 


April 12,1979 
Kevin MacKenzie proposes 
adding some emotion to the dry, 
text-only medium of e-mail. Per- 
haps, he said, we could expand 
the punctuation used in e-mail 
messages. To indicate that a sen- 
tence is meant to be tongue-in- 
cheek, he suggests adding -) at 
the end of the sentence. 


| > 
November 1983 
The Domain Name System (DNS) 
is created. Designed by Jon Pos- 
tel, Paul Mockapetris and Craig 
Partridge to support the e-mail 
addressing space, DNS gave us 
the common address endings we 
use today, including .com, .edu, 
.gov, .int, .mil, .net and .org. 


November 1984 
Lotus Development Corp. an- 
nounces Jazz for Macintosh. This 
all-in-one program incorporates 
spreadsheet, datasheet, data- 
base, graphics, word processing 
and communication tools for Mac 
users. 


1985 

Quantum Computer Services is 
founded in May; in November its 
first online service, Q-Link, 
launches on Commodore Busi- 
ness Machines. 


Nov. IL, 1987 


Microsoft Mail 1.0 for the Macin- 
tosh, formerly known as In- 


1988 

Steve Dormer writes Eudora. 
Named after the author Eudora 
Welty, this program offers the 
first graphical interface for 
e-mail management. 


1989 


Lotus announces Lotus Notes. 


October 199] 
Quantum Computer Services 
becomes America Online Inc. 


1992 


CERN creates World Wide Web . 


Jan. 12,1993 


Microsoft introduces the first 
e-mail client for Windows. 


1995 


IBM purchases Lotus. 


1995 


Microsoft debuts its online 


January 1996 
“Cleveland Browns fans deluge 
politicians, the media, and the 
NFL with nearly 2 million e-mail 
messages protesting the move of 
the team to Baltimore.” (U.S. 
News & World Report) 


1996 


More e-mail was sent than postal 
mail in the U.S. for the first time. 


Jan. 16, 1997 


Microsoft releases Outlook 97. 


1998 


Microsoft acquires Hotmail. 


1999 


AOL acquires Netscape 
Communications Corp. 





IBM Donates Software 


IBM said last week that it’s donat- 
ing $40 million in software to the 
open-source community. The new 
Java-based, open-source software, 
known as Eclipse, will let develop- 
ers share code from multiple ven- 
dors, enabling them to integrate 
business processes used to create 
e-business applications such as 
those for Web services, IBM said. 


Oracle Veteran Named 
Chairman of eLance 


Ray Lane, former Oracle Corp. 
president and chief operating offi- 
cer, has been named chairman of 
eLance Inc., which recruited him to 
help boost its procurement services 
for large businesses. Sunnyvale, 
Calif.-based eLance also announced 
that it has named Fabio Rosati pres- 
ident and CEO. Rosati most recently 
headed the Strategy & Transforma- 
tion practice at Paris-based Cap 
Gemini Ernst & Young. 


SSA Bares All to 
Win Customers 


After filing for bankruptcy protec- 
tion in April last year and subse- 
quently being acquired by New York 
investment firm Cerberus Capital 
Management LP, SSA Global Tech- 
nologies Ltd. needs to overcome 
concerns about its profitability, said 
Michael Greenough, CEO of the 
Chicago-based manufacturing ap- 
plications developer. Greenough 
told Computerworld Hong Kong that 
his firm is presenting its financial 
statements to potential customers 
to ease such apprehensions. 


Short Takes 


CISCO SYSTEMS INC. announced 
first-quarter profits that beat Wall 
Street forecasts but still plummeted 
76% compared with the same peri- 
od a year ago. . . . Houston-based 
BMC SOFTWARE INC. is planning to 
cut its worldwide workforce of more 
than 6,800 workers by 7%, or ap- 
proximately 475 employees. 
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HP Founders’ Kin Say 
No to Compaq 


Hewlett, Packard families could sway 
other stockholders to scuttle huge deal 


BY LINDA ROSENCRANCE 


NALYSTS I 
week said 
the decision 


AS1 
that 
by 


the families of the | 


founders of Hew- 


| lett-Packard Co. to oppose the 
| computer 


giant’s planned 
merger with Compaq Comput- 
er Corp. could be the kiss of 
death for the deal. 
opposition could 


lies’ influ- 


| vote against it, they warned. 


| A.G. Edwards & Sons Inc. 
| by the Hewlett family is a ma- | 


| beit a symbolic one. 


| Summit 


| for “the two companies — with | 


Brett Miller, an analyst at 
in St. 
Louis, said the announcement 
jor vote of no confidence, al- 
Carly Fiorina 
he said. 

Laurie McCabe, an analyst at 
Strategies Inc. 
Boston, said the opposition to 


in 


the $21 billion merger by the | 
| families sends the 
| sage that 90% of financial and | 
| industry 
| sending since the merger was | 


same mes- 


analysts have been 
announced. Does it make sense 


things not going as well as they 


should be — to act like beasts | 


| trying to devour each other?” 
| she asked. 


“At a minimum, there should | 


be some cause for concern,” 
McCabe “And having a 
big shareholder — and mem- 


said. 


| ber of the founding family — 


under the gun now to prove 


publicly voice their disap- 


proval undermines Carly’s po- | 


sition. She is going to be more 


| this can work.” 


| at Illuminata Inc. 
., said the Hewlett family’s | 


Jonathan Eunice, an analyst 


N.H 
decision was, at the very least, 
embarrassing to HP. “HP’s 


| ways been a friendly company, 


and friendly, soft and cuddly 
companies have a lot more 


| hard-as-steel 


The fami- | 


HP CEO | 
“is putting her | 
| job on the line,” 


in Nashua, | 


al- | 


trouble in mergers, 
companies like 
Computer Associates,” he said. 

Dan Kusnetzky, an analyst at 
IDC in Framingham, Mass., said 
the Hewlett family is probably 
concerned about the anticipat- 
ed loss of business from For- 


tune 1,000 companies when 


| products from Tandem Com- | 
puters Inc. and Digital Equip- | 


ment Corp. — acquired by Com- 
paq in 1997 — are phased out. 
“They’re planning to retire 


| those products as soon as pos- 


Lucent to Sell 
Professional 


Firm shifting focus 


BY TODD R. WEISS 
Lucent Technologies Inc. said 


last week that it plans to sell its 
1,400-worker enterprise pro- | 
| that Lucent probably won’t get 
| what it’s seeking for the divi- 


fessional services division by 
the end of the year, as it contin- 


| ues to restructure its business | 


in a tough market. 
James Kelleher, an analyst at 
Argus Research Corp. in New 


| sible [ 


| strike 


unlike | 


tomer uncertainty 


| prise, 


to core customers | 


| since last year. 


Merger 


after the merger]. Any- 
one using those products will 
back by buying them 
from competitors,” he said. 
According to published re- 


ports, David W. Packard, son of 


HP co-founder David Packard, 
said he intends to join the 
Hewlett family in opposing the 
merger. He is founder of the 
Packard Humanities Institute 
in Los Altos, Calif. 

In opposing the merger, 
board member Walter B. Hew- 


lett cited sluggish growth in | 


the PC and low-end server 
markets, the potential dilution 


| of HP’s profitable printer and 


and cus- 
that could 


imaging business, 


Enterprise 


ervices Unit 


IDC in Framingham, 
since Lucent has been 
clearly voicing such intentions 
“It’s another 
step in the process for Lucent 
to refocus on 
ness,” he said. 

One problem, 


its core 
however, is 
sion, Dean noted. 


“I don’t think they’re going 
to get the kind of value out of it 


York, said Lucent’s decision is 


consistent with what the Mur- 


ray Hill, N.J.-based company 


has been saying and doing for | 


months as it restructures and 
sheds unwanted 
order to eventually serve only 
its core customers. 

“This is just kind of a frac- 
tion of [Lucent],” Kelleher said 
of the division. “It 
makes sense from a corporate 
point of view . .. to just focus on 
the market they want to be in.” 

Richard Dean, an analyst at 


divisions in 


services 


It’s another step 
in the process 
for Lucent to 
refocus on its 
core business. 


RICHARD DEAN, ANALYST, IDC 


Mass., | 
said the news should be no sur- | 


busi- | 





| that they expect,” 


| work consulting, design 


| 
| 





| lies own approximately 17 
| HP. The breakdown: 


| Hewlett family and its trusts 


| vices group is a 
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ie eT 
Family Values 


The Hewlett and Packard fami- 
7.2% of 


106 million shares 


The David and Lucille Packard Foundation 
201 million shares 


Packard Humanities institute 
25.7 million shares 


1.3% 


be created after the merger. 
The other members of HP’s 
board issued a statement re- 
affirming their support of the 
merger and of Fiorina. Com- 
paq’s board also issued a state- 
ment reaffirming its strong 
support of the merger. How- 
ever, the companies declined 
to comment beyond their offi- 
cial statements. D 
The IDG News Service con- 
tributed to this report. 


he said. 

The division provides net- 
and 
integration services to Lucent 
customers in the Fortune 100 
ranks. The unit is headquar- 
tered in Sunnyvale, Calif., and 
is part of Lucent’s Worldwide 
Services business, which has 
24,000 employees. 

“What we’ve been doing in 
the last year is focusing our- 
selves on our large service 
providers 
tomers are continuing to gen- 
erate revenue for the company, 
said Lucent spokesman Bill 
Price. “Our top 30 customers 
make up 70% of our total rev- 
enues. You have to make deci- 
sions on what fits and what 
doesn’t fit.” 

Price said the enterprise ser- 
“strong busi- 
ness with a talented team” that 


.” because those cus- 


| will likely be sought by anoth- 


er company. 

The group was previously 
part of International Network 
company that 
merged with Lucent in Octo- 


Services, a 


| ber 1999. It serves more than 


600 customers in North Amer- 
ica and Europe and ranks as 
the third-largest network ser- 
vices player in the U.S., accord- 
ing toIDC.D 





I'm not just another pretty face. I'm a better way of doing things. 


| am Dell. Simplifying the way the world buys and manages technology, one customer at a time. 
By all appearances, | am a server. But take a closer look, and you'll see | am more than that 
| am a direct relationship, free of middlemen 
| am the best value ir the industry 
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NEWS 


PATRICIA KEEFE 


Dereliction of Duty 


HRISTMAS CAME EARLY to Redmond last week, as our 
ordinarily tough-talking attorney general and his coward- 
ly minions at the Department of Justice gave Bill Gates 
what amounts to a whopping gift certificate to the Inter- 
net. That Microsoft would want this deal is no surprise. 


That the DOJ rolled over is a huge dis- 
appointment, however. The last hope 
for a reasonable remedy are the at 
least six gutsy state attorneys general 
who refuse to let it go. 

Talk about a sell-out. Thomas Weis- 
el Partners, a San Francisco-based in- 
vestment bank, pretty much summed 
it up last week, when it characterized 
the settlement to its clients as “a ma- 


rf) 
PATRICIA KEEFE is editorial | 


less nip to one of the wealthiest and 
most powerful companies in the world 
— acompany that was not deterred 
from its agenda one iota by this trial. 
Look at its recent attempt to block 
users of some browsers from MSN. 

So what can we expect posttrial? 
The settlement as it stands is so rid- 
dled with exceptions and loopholes 
that it might as well have been inked 


jor win; no substantive change in busi- director at Computer- | On Swiss cheese. That the Justice De- 
ness model or R&D practices.” world. Youcan contact } partment’s senior nonpolitical staff 


So, after three years, thousands of 


her at patricia_keefe@ 
_computerworid. com. 


didn’t sign on to the agreement speaks 


pages of testimony and an estimated i? ——— VOlumes. Bill Gates had to have been 


$35 million, the Justice Department is settling for 
no substantive changes? Does the government 
know it got Microsoft convicted of illegally main- 
taining a monopoly? That ought to count for 
something. It convinced one judge that the com- 
pany should be broken up. Couldn’t the DOJ per- 
suade another to render a fair penalty? Doesn't it 
have an obligation to at least try? 

But no, for the second time in almost ll and a 
half years, a spineless DOJ has delivered a tooth- 


‘OU HAVE BEEN Founp 
OVILTY OF STIFLING 
COMPETITION, ABUSING 
A DoMINANT MARIKET 
POSITION , AND BEHAVING 
Li—E A MONOPOLIST, 


laughing up his sleeve when he asserted that “this 
decree will place significant restrictions on our 
business.” 

If losing an antitrust suit — twice — means 
having to do little more than say you’re sorry, 


| what’s the point of this entire legal exercise? The 
| lesson for other antitrust targets is clear: Con- 


tribute heavily to political campaigns, treat the 


| whole thing as a joke, and the Justice Department 
| . . . 
| will just lie down. D 


JUST Don ‘T 
LET IT 
HAPPEN AGAIN. 
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PIMM FOX 
Isolating 
Applications 


NTEL AND LINUX servers 


don’t get any respect. 


| servers are 
| commodity items that grab attention 

| only if they fail. Yet they require air conditioning, 
| power, space, 
| multiply like 
| dividually host CRM, ERP 
and other applications. 

And because of the na- 

ture of IT development 


projects, serv 


On the one hand, most 
treated as boring, generic 


maintenance and support, and they 
rabbits to in- 


er purchases 


are hardly ever made with a 
| view toward sharing CPU 
| resources. 


That’s despite the fact 


PIMM FOX iS 


| that most servers run at uti- —_ Gomputerworld’s West 





lization rates 


of about 10%, Coast bureau chief. 


computerworld.com. 


with peak loads of about Contact him at pimm_fox@ | 


| 


. 


30%, says Len Ceruzzi, di- sldcscllccedinaslomneatetaicanaial 
| rector of IT at VMware and former director of mi- 


crosystems al 


nd network technologies at Nasdaq. 


From the perspective of IT teams, as long as 
each team receives the servers necessary to do its 


job, no one m 


akes a fuss. 


The sad truth is that there are tons of spare 
| CPUs sitting 
tioning could 


managers are 


For examp!l 


in every data center. Virtual parti- 
change this, but some data center 
still scared to put more than one 


| application on a commodity machine. 


e, there’s the conflict of Dynamic 


Link Libraries that makes it necessary for each li- 


brary to have 


| ory leaks ina 
| machine to hang up. Some software, especially 


its own server. Then you have mem- 
pplications that could cause a whole 


database applications, even assumes it owns the 


| whole computer. Operating in a mode referred to 
as “busy-wait,” 


these applications sit around and 


spin, chewing up CPU cycles when they aren’t 


| doing anything — except costing you money. If 
| you get two of these hogs on one machine, you 


may end up with a major performance problem. 
There are many reasons for granting every ap- 


| plication its own server, but there are more- 


compelling reasons to jettison this mind-set. The 
first is management time. The second is money. 
Maintaining boxes, whether you’ve consolidated 
them into one glass-enclosed room or spread them 
out geographically, and moving them in and out for 


rie 


| maintenance and new releases is a management 


For more Computerworld columnists and links to 
archives of previous columns, head to 


www.computerworld.com/q?q1000 
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nightmare. Just keeping track of the hardware in a 
data center is a painful, full-time job. 

And then there’s the cost of unused CPUs. 

Why buy new hardware when you can look out 
over your data center at a sea of machines run- 
ning at just 10% utilization? 

Either the application deployment has been 
wrong (unlikely) or you’re faced with the chance 
to consolidate server resources. 

The Unix and mainframe world has done this 
for years, using hardware partitioning to put mul- 
tiple applications onto one operating system. 

Now it’s time to apply the same logic to Wintel 
and Linux machines. 

With readily available virtual partitioning tech- 
nology, you can be efficient with the servers 
you’ve already bought. That’s the best way to give 
your hardware some respect. B 


DAVID MOSCHELLA 


Much Depends on 
Microsoft Panel 


NE OF THE MOST telling tests of 

recent presidential candidates 

has been how the quality of their 
vice presidential choices reflected the 
likely success of the enterprise. 

In 1992, Ross Perot somehow selected the be- 
wildered and sadly out of place retired Navy Vice 
Adm. James Stockdale. In 1996, Bob Dole couldn’t 
persuade Colin Powell to give the Republican 
ticket a chance, and last year, the formidable Dick 
Cheney gave George W. Bush the credibility he 
needed to edge out Al Gore. 

All of this came to mind as I read the contorted 
proposed settlement between the government 
and Microsoft. Unless the states still contesting 
the case manage to extract more concessions or 
tougher language, the settlement’s future effec- 
tiveness will be up to the 
three-person technical 
committee required to be 
in place within 30 days of 
the agreement’s approval. 
The committee — with 
one member chosen by the 
government, one by Mi- 
crosoft and one agreed to 
mutually — is to be grant- 
ed broad powers to make 
sure that the agreement is 
effectively implemented. 

As things look now, the committee will be cru- 
cial because the agreement itself is so complex 
and unsure of itself that ongoing human oversight 
and interpretation will be required. It’s the sort of 
messy situation that many technical professionals 
might wish to avoid, and therefore the first real 


DAVID MOSCHELLA is an 
author and independent 
consultant. Contact him 

at dmoschella@earthlink.net. 


test will be whether individuals of sufficient rep- 
utation and credibility can be recruited for the 


| initial 30-month term. The government's choice 


will be particularly revealing. 
Despite the understandably harsh criticism of 


| this deal, it holds some potentially meaningful 


curbs on Microsoft’s power. Uniform Windows 


terms and conditions, the banning of exclusionary 


contracts and the providing of “timely” interface 
information are significant improvements. The 


| problem is that the settlement contains so many 

| exceptions, conditions and delays that it could 

| easily dissolve into a fog of differing interpreta- 

| tions. It’s the sort of challenge that a strong panel 





| might be able to manage but that many qualified 
| candidates will view as a no-win situation. 


Of course, the proposed settlement could have, 
and should have, been tougher. But, ultimately, 


| these cases are almost always shaped by the 


wider political-economic context, and recent 
events have made it much tougher for the govern- 
ment to maintain a strong anti-Microsoft posi- 
tion. John Ashcroft and his team simply have 


Training for Managers 
HE AMERICAN 
Management As- 
sociation (www. 

amanet.org) offers many 

fine courses in manage- 

ment [“Poof! You’re a 

Manager,” Business, Oct. 

29]. It has a thick catalog 

of classes. I have taken 

several of these, and they 
have proved to be very 
valuable in the IT envi- 
ronment. The Project 

Management Institute 

(www.pmi.org) offers 

certification in project 

management. The certifi- 
cation isn’t specific to IT, 


| but the principles cer- 


tainly apply to IT proj- 
ects. I have been in- 
volved with IT for 14 
years and have discov- 
ered that management 
classes can tremendously 
help the new manager. 
Michael J. Raboy 
Database administrator 
Pragmatic Business Systems 
Thousand Oaks, Calif. 


Ou Say the best 

advice for new 

managers is, “Do 
unto others as you would 
have them do unto you.” 





| My approach is a little 
| different: Treat people 


the way they want to be 
treated. Don’t assume 
that employees will be 


| happy if you forget or de- 
| lay their reviews or any- 


thing else to do with 
money, reward or recog- 
nition. Just realize that 


| not everyone wants to be 
| rewarded or recognized 


in the same way. 


| Johanna Rothman 

| President 

| Rothman Consulting Group Inc. 
| Arlington, Mass. 


‘Let's Hear It for IT 


T IS TRULY SAD that it 
takes a national 
tragedy to realize 


| how dependent compa- 


nies are on computer 
systems, the Internet 
and, of course, the IT 
staff. | applaud Alex Tor- 
ralbas for standing up 


| for us little people and 


putting it out there for 
everyone to see [“Events 
of Sept. ll Show That IT 
Has Heroes, Too,” News 
Opinion, Oct. 29]. 

Greg Deese 

Network manager 

Charlotte, N.C. 


29 


many more important things to worry about right 
now, and today’s fragile economy, stock market 


| and tech sector have bent the entire public sector 


toward active corporate support. 
From this perspective, the current situation is 


| analogous to the Reagan administration’s ending 


of the IBM antitrust suit in 1982. While the ad- 
ministrations are different, the economic similari- 


| ties actually run much deeper. In the early 1980s, 
| the IT industry’s biggest fear was the perceived 


rise of Japan Inc., so it looked like it would be 


rash and foolish for the government to unilateral- 
| ly disarm the nation’s IT industry standard-bear- 


er. It was much safer not to act, especially given 


| the simultaneous decision to break up AT&T. 


| standard), SOAP (also a 
| W3C standard) and 
| UDDI (an industry con- 





| Who's the Monopolist? | 


| Seattle 
| Griscom@nwcpp.org 


Given the enormous pressure to settle this case, 
it’s not surprising that the government gave 
ground and Microsoft secured more favorable 
| terms. The result is this proposed skeleton of a 
| plan that, if it stands, only the three wisepeople 
| (along with a changed political-economic con- 
| text) can possibly bring to life. The task would be 
daunting. Will there be any serious volunteers? B 


O ILLUMINATE the 

lies in the editorial | 

“Fight the Monop- 
oly” [News Opinion, Oct. 
29], I'd like to draw a 


comparison between Sun 


Microsystems and Mi- 
crosoft. 

Sun controls its pro- 
prietary Java language, 
which isn’t a W3C, ANSI 
or ECMA standard. Sun 


| told developers for years 
| : 
| that it would make Java a 


third-party standard, but 
it pulled back. Java-to- 


| Java communication uses | 
| proprietary protocols by 


default. 
Microsoft is building a 


| system called .Net that 


depends on XML (a W3C 


sortium standard). Mi- 
crosoft has developed a 
Common Language Run- 
time (CLR) and the C# 
language and has submit- | 
ted both to ECMA. So 
-Net is becoming less 
platform-dependent than 
Java. 

Matthew Griscom 
Webmaster 


Oui 


North Beach Elementary School 


Editor’s note: Microsoft 
says it has submitted only 


| a subset of the CLR, the 


Common Language Infra- 
structure, to ECMA. 


PRAISE YOU for taking 
a stand. Look at the 
bright side: It should- 


| n’t be too much longer 


before mighty Microsoft 
has all our money; then it 


| won't have anyone to 


prey on except itself. 
Steven Rubenstein 
Murfreesboro, Tenn 


| SJR@ElectricSpectric.com 
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PLAYING THE BOARDS 


CIOs who sit on the boards of ven- 
dor companies can gain valuable 
business experience that they can 
apply to their primary jobs. But 
some IT leaders contend that these 
relationships pose serious conflicts 
of interests. bene 32 


CONNECTING WITH SLAs 


Striking effective service-level 
agreements (SLA) with communi- 
cations providers means identify- 
ing upfront the specific skill sets 
the vendor will provide, as well as 
establishing performance metrics, 
say practitioners. PAGE 38 


HOT SKILLS FOR 
A COLD MARKET 


Face it — the job market for IT 
professionals stinks. But despite 
the layoffs, declining salaries and 
disappearing bonuses, you can 
improve your marketability if you 
have certain key skills, says Paul 
Raines of Barclay’s Capital (above) 
and other IT professionals. PAGE 44 


TRACKING SALES 
FROM START TO FINISH 


A new enterprise incentive- 
management system at Welch 
Allyn should help the medical sup- 
plies maker save up to $1 million 
per year by helping it track and 
reward its salespeople more effec- 
tively. PAGE 48 
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Year-end Closeouts 


INCE THE END OF THE YEAR is only weeks away, it’s a great 
time to secure some price or contractual concessions from ven- 
dors whose books close Dec. 31. For inspiration, take the follow- 
ing software deal that was completed just before the end of a 


vendor’s fiscal year. 


The customer had a vendor software license that was several years old. 
The customer acquired a new division, which had its own license with 


the same vendor that was about a year old. Because 
of the acquisition, the customer needed an addition- 
al $500,000 worth of the software. 

As we’ve discussed many times before, to do a good 
deal, you need great leverage. As negotiations for this 
deal began, it appeared to be nirvana for the vendor, 
since it thought it had all the leverage. There would 
be incremental additional revenue from a dependent 
customer with little or no sales or negotiation effort. 

But another basic negotiating tenet is to know 
your opponent. The customer’s procurement pro- 
fessionals prepared for negotiations by first re- 
searching the vendor. Thanks to the Internet, this 
once time-consuming process has become a snap. 
They checked out the vendor’s Web page, its press 
releases and the security interest filings of financiers 
on company assets. The customer team also found 
the vendor’s financials, along with a warning of a 
projected drop in fourth-quarter profits. This set off 
a bell that the vendor might do more than what was 
normally expected to land the business. 

One key piece of information the nego- 
tiators learned was that the vendor’s fiscal 
year ended June 30. They knew most ven- 
dors get really negotiable at year’s end. 
The date when the parties planned to ne- 
gotiate was June 25 — what a break! 

With that knowledge, the customer team 
turned its attention to the more appealing 
of the two license agreements the company 
had with the vendor. It provided much more 
flexibility in using the software throughout 
the corporation, better remedies and a cap 
on maintenance price increases. The cus- 
tomer would also need fewer additional 
copies of the software if it could preserve 
the agreement’s terms permitting license 
transfers within the enterprise. 

When negotiations started, the cus- 
tomer insisted on getting better pricing 
and using the more favorable license 
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agreement to govern the new transaction. The ven- 
dor responded with multiple ploys. Its representa- 
tives said the following things: 

@ This price is good only until the end of our fiscal 
year (five days away). 

@ We can’t give you a better deal than we give the 
federal government, because of a contract require- 
ment guaranteeing the feds the best price. 

@ There’s a price increase coming in July. 

@ We don’t use that old license agreement anymore. 
We have a new and improved one. 

The customer’s negotiators responded perfectly. 
They said, “We don’t have to do this deal now. We 
can do this deal later. As a matter of fact, we don’t 
have to do this deal at all. We can’t sell your deal to 
our management as it’s currently structured. If you 
want this deal this fiscal year, do it our way — or hit 
the highway. It’s your choice.” 

The vendor complained, whined, pouted and 
threatened to walk away. The customer’s representa- 
tives just listened and repeated their position. 

After a few days and some phone 
calls made behind the negotiating team’s 
back, the vendor’s representatives realized 
that all the key customer players were 
aligned as a team and solidly behind the 
negotiators. 

The vendor caved. On June 29, the cus- 
tomer signed a deal that more than dou- 
bled the software discount from 20% to 
41% on a comparable number of licenses 
and extended the more favorable license 
to cover the merged organization. This 
was a better deal than the customer 
thought it could get at first, but year-end 
pressures undoubtedly gave the vendor 
incentives to give special concessions. So, 
information is power! 

This case study should also remind you 
that you must be aggressive to extract 
meaningful concessions from vendors. D 
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CIOs are split on 
whether a seat 

on the board of 
directors of an IT 
company is a huge 
benefit or poses a 
conflict of 1 interests. 
By Kevin Fogarty 


S CIO AT MCDONALD’S Corp. and then AOL 
Time Warner Inc., Carl Dill spent plenty of 
time meeting with top managers — align- 
ing IT with business goals, sponsoring new 
projects, negotiating budgets. 

But it wasn’t until he became a member 
of the board of directors of tiny Chicago- 
based contract development house 

ThoughtWorks Inc. that he really understood the per- 

spective of the people who ran the businesses he’s 

worked at, he s 
The bottom-line perspective of a venture capitalist 


ays. 


gave him more of an appreciation for the profitability 


of a company, as well as a tougher outlook in evaluat- 
ing new hires and other expenses, Dill says. 

“As CIO, my stock options and bonuses would be 
affected by profitability, but I wouldn’t feel ultimate- 
ly accountable, the way the CEO or a board member 
feels,” Dill says. “And the VC perspective keeps you 
honest in hiring, in terms of whether these people 
will actually generate new business or are just cool 
technicians.” 

The business education CIOs get sitting on the 
board of directors of outside technology companies 
is an incredible career boost, according to CIOs who 
approve the practice. However, detractors warn that 
board roles can not only create conflicts of interests, 
but can also divide an executive's attention, loyalty 
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ClOs in Directors Seats 


A few IT executives who also serve as directors of technology companies: 


= Robert B. Carter 
CIO 

FedEx Corp. 
Memphis 


= Gregor S. Baiiar 

CIO 

Capital One Financial Corp. 
Falls Church, Va. 

(Former CIO at Washington- 
based Nasdaq Stock Market Inc.) 
On the boards of: Boston-based 
marketing and technology ser- 
vices firm Digitas Inc. since July; 
Mountain Lakes, N.J.-based lega- 
cy and Web integration company 
Red Oak Software Inc. since No- 
vember 2000 


= Eugen Beckert 

Senior representative 
DaimlerChrysler Services AG 
(Former CIO of financial ser- 
vices Asia/Pacific at Daimler- 
Chrysler) 

Berlin 

On the board of: Custom software 
company NetSol International 
Inc. in Calabasas, Calif., since 


July 


since March; E-c 
nology firm Aser 


= Dawn LePore 


San Francisco 


since July 2000 


The PMI Group 
San Francisco 


and the cohesiveness of the management team at his 
primary employer. 

Figures on how many CIOs actually sit on vendor 
boards are hard to come by, but searches against San 


| Francisco-based Business Wire and other sources 


of corporate press releases showed a steady increase 
in the number of technology companies announcing 
that they have hired potential customers to help 
direct their businesses. 

Advocates of the practice, like Robert Carter, CIO 
at Memphis-based FedEx Corp., say sitting on the 
board of a vendor company gives CIOs a business 
education they could never get anywhere else. 

“It’s fun and rewarding, and I believe it helps any 
executive expand their horizons to see different busi- 


Boards 


: On the boards of: Application ser- 
: vice provider Jamcracker Inc. 


Calif., since December 2000 


: Vice chairman/CIO 
; The Charles Schwab Corp. 


On the board of: San Mateo, Calif.- 
based Viador Inc., a provider of 
enterprise information portals, 


: ms Daniel L. Roberts 
: Executive vice president/CIO 


On the board of: Fremont, Calif.- 
based middleware integration 


firm Versant Corp. since last 
month 


= Kathy Brittain-White 

Executive vice president/CIO 
Cardinal Health Inc. 

Dublin, Ohio 

On the boards of: CMore Medical 
Solutions Inc., a Minneapolis- 
based health care software and 
services firm, since September; 
National Service Industries Inc., 
an Atlanta-based lighting, chemi- 
cals and textiles firm, since Octo- 
ber 1999 


=Car! Wilson 

CIO 

Marriott International Inc. 
Bethesda, Md. 

On the board of: Software Archi- 
tects Inc., a Chicago-based appli- 
cation development firm and 
provider of professional services, 
since September 


ommerce tech- 
a Inc. in Belmont, 


Inc. 


ness problems,” 

Opponents of the practice, such as Bob Schwartz, 

| president of Panasonic Management Information 
Technology Services Co. in Secaucus, NJ. (the IT de- 
partment of Panasonic Co.), say sitting on the board 
of a technology company inevitably compromises 

| the integrity of a CIO, no matter how much he may 

| try to avoid it. 

Board seats, which typically come with five-figure 
| salaries, force CIOs to serve two organizations, each 
| of which has a legitimate claim on his time and 
| loyalties. 

“I believe everyone has some integrity and tries to 
do the right thing,” Schwartz says. “But I still have to 
believe, just based on human nature, that if you are 
asked to make decisions on a board of directors, 
which is a part-time position, you're still very much 
associated with the company that employs you. And 
that is your primary responsibility.” 

Schwartz says he has declined offers or inquiries 
about board seats as well as spots on advisory boards 
that include compensation. 

“Keeping the relationship at arms’ length elimi- 
nates any potential cloudiness about conflict,” 

| Schwartz says. 

Unlike positions on vendor advisory boards or in 

| other informal associations, an outside CIO paid to 

| sit on a board of directors would be obligated to act 

| in the best interest of shareholders, even at the ex- 

pense of his own company’s interest, argues Peter 

Sole, CEO of The Research Board Inc., a New York- 

based think tank devoted to the concerns of CIOs. 
“It’s quite clear where your responsibility lies 

| when you're in that room,” says Sole. 

But sitting in that room and soaking in the experi- 


Carter says. 








Playing the Boards 


Continued from page 33 

ence of other senior executives — as well as making 
contacts and building knowledge about directing a 
company at the strategic level — can be invaluable 
to CIOs, whose experience tends to be too narrowly 
focused on technology, Sole says. 

“You get a good financial education and manage- 
ment education,” Dill says. “You get the chance to 
work directly with VCs see how they think about 
potential acquisitions. It’s a tremendous benefit to 
a CIO to be on a full board that you don’t get on an 
advisory board.” 

That’s one of the major reasons FedEx CEO Fred- 
erick Smith encourages all senior executives at his 
company to sit on the boards of other businesses, 
Carter says. 

“There’s a learning opportunity as you get expo- 
sure to the caliber of individuals that sit on these 
boards,” Carter says. “And, contrary to the thought 
that it’s a drain from your primary responsibilities, 
we look at it as being complementary, an asset to 
current responsibilities to get that experience and 
exposure.” 

Current and former ClOs can also use their time 
on boards to exercise their nontechnological man- 
agement muscles, which might not get such a work- 
out otherwise, Dill says. 

“We're not just technologists,” he says. “We've had 
to run significant organizations where we've had to 
do lots of people development. Being able to get into 
those issues is part of what’s attractive about being 
on a board. You get into a lot more than just what are 
the technology trends and products and services in 
the future.” 


Potential for Trouble 

The most obvious potential conflict is one in 
which a CIO has to make decisions on a board of 
directors that might adversely affect his primary 
employer. 

rhat situation rarely comes up, however, because 
CIOs don’t usually sit on boards of companies with 
which they do business, Sole says. 

In fact, board-level relationships are too important 


Companies fre- 
quently have outside 
CEOs on boards, 
and no one calls that 
into question. 


HARRIS N. MILLER, PRESIDENT, 
INFORMATION TECHNOLOGY ASSOCIATION 
OF AMERICA 


| based Marriott International Inc., had 


~ BUSINESS © 


to waste on acquiring a single new cus- 
tomer, according to Gene Petrie, CEO 
of Chicago-based Software Architects 
Inc., which announced in September 
that Carl Wilson, CIO at Bethesda, Md.- 


joined its board. 

“It doesn’t make sense to put someone in a con- 
flicted situation,” Petrie says. “When we add some- 
one to the board, it’s to help define strategies and to 


| help the company grow; it’s not for one project or to 
| get one bit of business.” 


Mariott isn’t a current customer, though Petrie 


| says he wouldn't turn down business from the hospi- 


tality giant if the opportunity presented itself. 
Cupertino, Calif.-based application service pro- 


vider Jamcracker Inc. tapped Carter to sit on its 


board, despite a FedEx policy preventing it from 


| doing business with any company on which its 


senior executives serve as board members. 
“They were more interested in having an enter- 


| prise CIO as a part of the team, someone who could 


help guide them in the processes, the challenges of 
large-corporation CIOs, than they were in having 
one sales target” among thousands of potential sales 
targets, Carter says. 

Even when the board member’s company is a cus- 


tomer, not all board decisions will pose a potential 
| conflict, says Harris N. Miller, president of the In- 


formation Technology Association of America, an 
industry trade association in Arlington, Va. Board 
members regularly recuse themselves from voting 


|} on issues about which they have conflicts, or, if there 


was a serious dispute, one could simply resign, 


| he says. 


“Companies frequently have outside CEOs on 


| boards, and no one calls that into question,” Miller 


| says. “There’s no inherent increase in the conflict if 


it’s a CIO instead.” 
ThoughtWorks was able to secure the knowledge 


| and cachet of a major CIO, without the conflict, by 
| hiring Dill, a former CIO who works as a freelance 


industry consultant for companies with which he 


| would like to work. 


The company hired Dill for his savvy at creating 


| strategic long-term technology plans, as well as for 


his big-company experience, says ThoughtWorks 
CEO Roy Singham. 

Dill is on the board as a “champion” to keep the 
company focused on client needs, Singham says. 

Of course, he also hired Dill for the air of credibil 
ity that a CIO emeritus brings to the company. “Hav- 
ing someone of Carl’s status is a symbol to our cus- 
tomers,” Singham says. 


| Political Quagmire 


However, CIOs who steer clear of any conflicts can 
still run afoul of corporate politics and misunder- 


| standings. 


In companies in which few other executives, if 


| any, sit on boards, colleagues “may think you're wast- 


ing your time and that you should be paying more 


| attention to what’s going on inside the company,” 


Sole says. 

While some companies are happy to have top ex- 
ecutives hold spots on symphony boards or other 
high-profile positions, those that expect top execu- 


CK 
Link® 
ClOs from large companies 


their boards, visit our Web site: 
www.computerworld.com/q?24436 
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tives to “work 100 hours a week and de- 
vote all their time and energy, other 
than family time, on the company” are 
unlikely to look favorably upon a CIO 
with a yen for outside directorships, 
Miller says. 

With both advisory board seats 
and board of director spots, the important thing is 
for a CIO to anticipate potential conflicts and decide 
ahead of time how he will respond to them, Miller 
says. Knowing that conflicts are possible is enough to 
defuse most situations, he says. 

Dill recommends disclosing any potential paid re- 
lationships or conflicts to senior managers, many of 
whom may recognize the value of the experience 
gained from both full board and advisory board seats. 

“The temptation is to do this off to the side as a ca- 
reer enhancer,” Dill says. “That’s where you can run 
into the policy issues and the loss of trust with senior 
management. You just can’t afford to do that.” D 


To find out why 
smaller vendor 
companies 

typically recruit 
‘0 sit on 


Kevin Fogarty is a former Computerworld editor. Con- 
tact him at kevinjfogarty@yahoo.com 


THE ADVISORY BOARD APPROACH: 


Some Content 
Without the Guilt 


Board seats at technology companies may come with the 
baggage of legal and fiduciary responsibilities, but they're bet- 
ter than advisory boards, which offer only the illusion of inclu- 
sion, according to Robert Carter, ClO at FedEx. 

“I can get a daylong briefing at any software company in 
Silicon Valley,” says Carter. “But to get below the sales pitch 
and into the core workings of the company, you need to be a 
board member. Even advisory boards do not go nearly as 
deep as board members go.” 

Advisory boards give members “70% to 80% of the 
exposure to the company’s policies. You get closer to the 
[vendor's] management team, but you're not as trusted as a 
board member,” says Carl Dill, formerly ClO at AOL Time 
Warner and McDonald's, who sits on the boards of Thought- 
Works and other companies. “You don't get a full overview of 
the financials and people strategies. It's a little bit more arms- 
length.” 

Spots on advisory boards are also relatively easy to snare, 
while seats on the boards of well-run companies are much 
sought-after by top-quality executives, Carter says. The more 
skilled or experienced the other members of the board, the 
more the CIO can learn, he says. 

Even advisory board positions - many of which pay hono- 
raria in cash or stock - can set up a conflict if the CIO is trying 
to negotiate with a vendor that previously paid for his advice. 

“That's why | have not accepted any position for which 
there is compensation,” says Bob Schwartz, president of 
Panasonic Management Information Technology Services. 
“That's not a formal policy, just a personal choice. It allows 
me to operate more freely, without having any sense of 
obligation.” 

in most cases, it's a much better fit to be on an advisory 
board while you're a sitting CIO and then go on to the full 
board later on, when you're doing consulting and other work, 
says Dill. 

- Kevin Fogarty 
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Upper 
management is asking for the moon: quickly and cost-efficiently 
develop a site that offers a personalized experience for customers 
and partners. In the past, building-in the kind of robust data analytics 
you're being asked for could take thousands of hours (most of them 


yours). But now there’s help: Microsoft Commerce Server 2000. 


Part of the flexible Microsoft .NET Enterprise Server family, Commerce 
Server 2000 works with BizTalk™ Server 2000 and SQL Server™ 2000 
to offer you a less complicated and less time-consuming approach to 
building tailored, effective e-commerce solutions. For example, 
Commerce Server 2000 comes 
with fully functional out-of-the- 
box starter sites, and pre-built 
applications such as click 
stream analysis, to help you 
get your site up and running even faster. And with full XML support, 


seamless data transfer moves from the wish list to the “done” list. 


So go ahead and build the effective site you're being asked 


to build, and still manage to have a life. To find out more, visit 


microsoft.com/commerceserver Software for the Agile Business 
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| doesn’t mean they’ll have them in the 


Connecting 
With Telcos 


Best practices include documenting 
vendor promises and defining specific 
technical support skills. By James Cope 


HE BEST WAY TO GET greater 

returns on expenditures with 

communications service 

providers is to craft service- 

level agreements (SLA) that 
track both network and human perfor- 
mance. 

Still, IT managers and analysts who 
have been through the process say that 
doesn’t mean customers should write 
up intricate agreements that collapse 
under their own weight. 

Instead, managers involved 

in SLAs are best served by 

being proactive and vigi- 

lant; they should clarify 

and record undocumented vendor 
promises and employ best practices, 
such as defining the technical support 
skill levels expected from vendors and 
naming the provider’s senior officials 
who will be called when problems es- 
calate beyond the norm. 

Such approaches ensure that carri- 
ers and other providers focus on 
customer needs instead of on their 
own bottom lines, says Doug Power, 
assistant commissioner for the City of 
Chicago and project manager for 


Chicago’s mammoth metropolitan-area 
network project. 
But service providers are ultimately 


| sales-focused, says Kevin Sterneckert, 
| CIO at Big V Supermarkets Inc. in 


Florida, N.Y. Recognizing and factoring 
in fair compensation for specified ser- 


| vices may sound unconventional, but 


Sterneckert says the practice deters 
vendors from making “low-ball bids” 
and increases the likelihood that the 
vendors who are selected 
will honor their agree- 
ments. 
SLAs are about keeping 
promises, Power says. He 
says the degree to which a service 


| provider keeps its promise is directly 
| proportional to the technical talent of 
| the staff a vendor assigns to the cus- 


tomer’s service team. That’s why he 
advises managers to detail the skill 


| levels that a vendor promises and in- 


| 


| ture, Power warns. “ 


| clude the head count assigned to the 
| customer in the SLA. 


Still, holding vendors to those com- 
mitments can be an ongoing adven- 
Simply because a 


| service provider has the techies now, 


| future,” 


Power says. 

In addition, IT managers should ask 
what they’re measuring before work- 
ing specific performance criteria into 


| SLAs, says Lisa Pierce, an analyst at 





| 
| 
| 
| 


Giga Information Group Inc. in Cam- 
bridge, Mass. Case in point: Long- 
distance providers may report on per- 
formance within their own networks 


| but not necessarily for other providers 
| with which they connect. She also cau- 
| tions managers to say no to murky lan- 
| guage in SLAs. 


“Averages across a 
provider’s entire frame-relay system, 
for example, are useless,” Pierce notes. 
Sterneckert has figured a way to 
both mitigate measurement problems 
and discourage vendor finger-pointing. 


For instance, he has split his company’s 


data networking and some voice ser- 
vices between two different providers. 
AT&T Corp. handles Big V’s frame- 
relay connections between its head- 
quarters and 31 stores and the packet- 
based voice services among those 
sites. A separate SLA with WorldCom 
Inc. handles teleconferencing services 
and all long-distance calls made over 


| public voice networks. 


While Sterneckert holds quarterly 
meetings with AT&T and WorldCom 
to discuss their performance against 


| their respective SLAs, he has also de- 


veloped his own proprietary process 
for tracking uptime for the frame-relay 
circuits his company uses. 

“We compare our measurements to 
reports provided by AT&T,” he says. 
“Typically, we don’t find a major dif- 
ference, but when we do, we figure out 
what’s going on and work through the 


differences.” D 
For advice on what to do when your 


Quic service provider can’t meet the terms 


I ore. e to 
i www.computerworld.com/q?24667 
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12 Ways toa 
Better SLA 


1. Go for shorter contract periods, 
with options to renew. 

2. Determine if the vendor can 
make a profit on your contract without 
betting on business that's yet to come. 
3. Request that the network under 
the SLA covers interconnected net- 
works owned and operated by other 
carriers; otherwise, create multiple SLAs 
specifying who's responsible for what. 
4. Define the number and specific 
skills of the vendor's technicians who 
will be available to support the SLA and 
where they will be located. 

5. List the names and numbers of 
senior service provider officials you can 
call when problems escalate. 


6. Conduct monthly or quarterly 
vendor meetings to review perfor- 
mance against the SLA to make sure 
you're both on the same page. 


7. Have a backup plan for network 
outages. 


8. Determine what will be mea- 
sured, how it will be measured, and who 
will measure it. 


9. Have a transition clause and 
process in place in case you need to 
switch to another provider. 


10. Define potential problems 
upfront and create a timetable for the 
vendor to fix them. 


11. Determine fines, reimbursements 
or other natural consequences if the 
provider doesn’t meet service levels. 


12. Determine which repair or 


replacement parts should be available 
within an hour. 


F BY THE NUMBERS ; 


Still Struggling With the Math 


How do you measure the success of technology spending? 


934% 


o> ae 12% 


than 100%. 


12% of companies reported ROI greater than 


1,000%. 


Lucrative ASPirations 


ASP implementations generated an average 
five-year ROI of 404%. 


57% of companies experienced ROI greater 


The average payback for ASP outsourcing was 
1.33 years on an average total investment of 


The CEO Perspective 


After the Sept. 1l attacks, 


58%, haven't changed hiring, layoff or expansion plans 


» haven't changed corporate travel policies 


: don't plan to change corporate security policies 
. expect attacks to delay economic recovery 


Z expect the economy to rebound during 


ia 34% 
Don't a ae Customer 


bl le ay 


$4.2 million. The average initial investment 


was $400,000. : the first half of next year 


Base: 50 IT executives at Fortune 1,000 companies. Multiple responses accepted. Base: 53 companies using ASP-delivered application services Base: 1,366 CEOs of midsize companies 


RRESTER RESEARCH IN AMBR AS 001 RCE. I FRAMINGHAM. MASS TEC INTERNATIONAL, SAN DIEGC 
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BUSI 
Damn the Budget, 


Full Speed Ahead! 


Corporate budgeting dooms planning and poisons 


organizations, but the fix is easy, says one expert | 


Corporate budgeting encourages man | 
agers to lie and cheat, lowball targets 

and inflate results. It turns business 
decisions into elaborate exercises in 
gaming, creating distrust and ill will and 
motivating people to act 
against the best interests of 
the company. So argues 
Michael C. Jensen, the Jesse 
Isidor Straus professor of 
business administration 
emeritus at Harvard Busi- 
ness School, in this month’s 
issue of the Harvard Busi- 
ness Review. 

Jensen is managing director of the 
organizational strategy practice at 
Monitor Group in Cambridge, Mass. He 
recently did some budget-bashing with 
Computerworld’s Kathleen Melymuka. 


Q: Why is corporate budgeting “a joke”? 
A: Because everybody involved in it 
understands that it’s generally highly 
counterproductive and a dance that 
they’re obligated to go through every 
year with relatively bad results. 


Q: What is it about the budgeting process 
that causes this mess? 
A: It’s individuals’ responses to the in- 
centives that cause the mess. Most orga- | 
nizations pay people not on what they 
do but on what they do relative to what 
they say they can do. 
Q: Can you give a short example of how this 
plays out? 
A: In September of the annual budget 
cycle, the managers of a Fortune 500 
firm were very close to missing the hur- 
dle point at which they get a substantial 
bonus. They announced to the market 
that there was going to be a 10% price 
increase effective Jan. 2. That motivated | 
customers to order early, transferring 
revenue from next year to this year so 
(the managers] would have a better 
chance of making this year’s bonus, 
even though it beggared the future and | 
caused them to incur additional costs. | 
Later, they announced at the Novem- 
ber board meeting that they weren't 


PEE SIR OY 
Thisisthefifthin | 
aseriesofmonthly | 
discussions with | 
authors of articles 
in the HARVARD 
BUSINESS REVIEW 
on topics of interest 
to IT managers. 


going to make the hurdle anyway and 
simultaneously announced the largest 
quarterly loss in the history of the com- 
pany. Once you don’t make the hurdle, it 
pays to do the opposite — to bring all 
your expenses into the cur- 
rent period and push rev- 
enues out to the future. 
This goes on at all levels of 
the organization, and peo- 
ple know it, and organiza- 
tions punish people for 
talking about it and reward 
people for lying. 


| Q:1see your point, but this 
| sounds like a finance problem. 


Why should an IT manager care 


| about budgeting? 
| A: Virtually every manager in 


an organization is involved in 
the process, both in his role up 
the line and in dealing with 
people underneath. When 
people under you in the orga- 
nization put together budgets, 
those are important for coor- 
dinating complex activities 
within and across depart- 
ments. The way it’s set up now, 
the system rewards people for 
lying. So if you’re using those 
budgets for planning and coor- 
dination, you're operating on 
quicksand. 


| Q: How can a company fix the budget mess 


without doing away with incentives? 


| A: It’s simple. Look at the relationship 


of pay and performance. We normally 
have systems that put kinks in that 
relationship at the points where bonus 
targets are set — say, at 80% or 120% of 
the budget target. The way to do away 
with the problem is to linearize that 
pay-for-performance relationship. 
Basically, pay people for what they do, 
not for what they do relative to [a tar- 
get]. A simple example of linear pay for 
performance would be a straight sales 
commission. 


Q: But won't a linear bonus schedule remove 


JENSEN says most 
organizations pay 
people on what 
they do relative to 
what they say they 
can do, resulting in 
a corporate bud- 
geting mess. 


the motivational effects of performance 
targets? 


A: It may, but there’s some question 
about the effects of stretch targets. One 
study found that a very large percent- 
age of people will lie if they’re close to 
meeting their goal. And that doesn’t 
even begin to estimate the real costs 
associated with this stuff. My guess is 
the costs are so large [that we'd see] a 
50% to 100% increase in productivity if 
we could get rid of them. 


Q: If | want to establish a linear bonus 
program, what do | need to watch out for? 
A: Most important, you need to give 
people a single valued performance 
measure to pay them on. A counter 
example is the “balanced scorecard.” 
That offers up to two dozen measures 
of performance. A manager has no way 
to decide what to do within the system 
to maximize performance when more 
than one dimension is being measured. 
That’s done all the time in organizations. 


Q: Is the bonus potential unlimited in a linear 
plan? 
A: I would argue that it should 
be, because as soon as it’s 
limited, you’ve put a kink in 
the plan and reintroduced all 
those effects we talked about 
before. If you penalize people 
for hard work, you’re going to 
get less of it. 


Q: Will organizations resist a linear 
plan? 

A: There is always going to be 
resistance. Everybody can 
benefit but people don’t like 
to change. They’ve figured 
out how to operate in the old 
system and they don’t know 
how they will fare in the new, 
so they resist. [That will make 
the job of the HR manager 
tougher as will higher turnover as a re- 
sult of low performing employees not 
getting rewarded as highly. So HR, in 
general, won’t be in favor.] There will 
also be people who have been free rid- 
ing, and they’re going to be unhappy. 


Q: How do | overcome resistance to this 
change? 

A: People have figured out how to oper- 
ate in the old system and they don't 
know how they will fare in the new, so 
they will resist. You need an effective 
educational program that helps people 
understand how the new system works. 
The CEO and top management have to 
set the rules and the tone. People have 





i to learn to think differently. D 
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Report: STP Should 


‘Deliver Big Benefits 


| The billions of dollars that the securities 


industry is spending to implement straight- 
through processing (STP) will probably carry 
on for another five to 10 years, but the finan- 
cial and operational benefits should be well 


| worth it by reducing overall expenses, 


according to a new report from Newton, 
Mass.-based Meridien Research Inc. 
STP is a combination of technology 


infrastructure and business processes that 


link brokerages, clearinghouses and banks 


| and is aimed at providing a nonstop flow 


of information from trade execution to 
settlement. For more on this report, visit 
www.meridien-research.com. 


Two-Way Messaging Used 


| With Energy Customers 


Kansas City Power & Light Co. (KCP&L) 
and Stonewater Software Inc. announced 
last week that they have both implemented 
Billerica, Mass.-based EnvoyWorldWide 
Inc.’s two-way messaging platform, 
EnvoyXpress. 

Bill Downey, president of Kansas City, 
Mo.-based KCP&L’s delivery division, said 
the system has reduced the time it takes the 
company to notify customers of opportunities 
to reduce energy consumption from 45 min- 
utes to 10 minutes. It has also saved the utility 


| 80% in operating costs. 


Stonewater Software, an Evanston, Ill.- 
based firm that offers tools to monitor 


| electricity, gas and water consumption, is 


using EnvoyXpress in cases of emergency, 
pricing adjustments or when customer use 
has exceeded a preset demand. 


TWX Taps Logistics.com 
For Procurement System 


The TJX Cos., a Framingham, Mass.-based 
off-price retailer of apparel and home fash- 
ions, has selected Burlington, Mass.-based 
Logistics.com Inc. to provide a strategic 
transportation procurement system. TJX will 
deploy Logistics.com’s OptiBid Network to 
procure truckload transportation for inbound 
delivery of merchandise that it will deliver to 
its 1,300-plus T.J. Maxx, Marshalls, Home- 
Goods and A.J. Wright stores across the U.S. 
TJX officials said they expect that OptiBid will 


| enable the company cut its overall transpor- 


tation costs. 
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For more than a decade, DLTtape™ technology 
has been known for its unparalleled reliability 
in data protection and retrieval. In fact, 
DLTtape cartridges must pass a stringent 
process to become 

fully qualified and 

display the 

DLTtape logo. 

That’s why you'll 

always want to look for 

the DLTtape logo when buying 

DLTtape products. It ensures that your 
company’s mission-critical data is trusted 
to quality media that has met the highest 
standards for reliability, compatibility 


and performance. You’re also guaranteed 


to be getting the de facto standard for data 
backup and retrieval. Products that do not 
have the DLTtape logo have not met these 
stringent qualification standards. 

So, be 
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DLTtape logo. 
it gives you 
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the ultra-reliable backup solution that’s 
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the consolidation of your three data centers into one, when word comes in that you're buying your largest 
overseas distributor, adding two more data centers to the already complex 
equation. Okay, now what? 

To stay competitive in an environment like this, you have to be able 
to react quickly and decisively in the face of sudden change. It would help 
if your infrastructure were open, resilient and manageable enough to adapt 
when you need it to. And the only way that's possible is if the infrastructure 
is built to work around your needs, not the other way around. 

HP OpenView--our multi-platform management software —puts 
control of your entire infrastructure within easy reach of your keyboard. 
You can visualize and monitor your infrastructure—from legacy systems to 
storage to Internet services—from one central location. Helping you preempt 
problems before they occur, cost-effectively maintain high service levels and 
protect revenue streams. 

HP infrastructure solutions—servers, software, storage, services and 
beyond—are engineered for the real world of business. Because the last time 
we checked, that’s where we all work. Call 1.800.HPASKME, ext. 246. Or visit 


hp.com/go/ infrastructure. 


Infrastructure: it starts with you. 
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Hot Skills for 
Cold Market 


While the hiring demand in IT has plummeted in recent 
months, you can still get - and keep - a job if you 
have some key skills. By Deborah Radcliff 
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BOUT A YEAR AGO, FRED MEYER 
Jewelers began a migration away 
from the mainframes at its parent 
company, Fred Meyer Inc., a $5.5 
billion retailer based in Portland 
Ore. That’s when Karen Fung be- 
gan to see the writing on the wall. 
A 14-year Cobol veteran, Fung 
quickly taught herself C and Visual Basic. Then she 
signed on to a project to develop a point-of-sale sys- 
tem to run on new Windows NT machines. She’s 
now senior programmer in charge of five intranet 
and Web development projects. 

Fung didn’t have any Java experience. And she was 
just learning HTML and Microsoft Corp.’s Internet 
Information Server at the time she landed the senior 
programmer’s job. It was her soft skills, particularly 
her ability to pick up new languages and concepts, 
that got her the job, according to her boss, Mark Fu- 
nasaki, information systems manager. 

“She’s since passed up our Web development team 
and is leading the charge,” Funasaki says. 

Pickings are slimmer than they have been in recent 
years, but jobs are out there for IT 
workers who can add value to a com- 
pany’s bottom line, says Katherine 
Spencer Lee, executive director of the 
consulting division at Robert Half In- 

ternational Inc., a job placement firm based in Menlo 
Park, Calif. 

For example, corporate intranets are going forward 
because they reduce paper and training costs. That’s 
creating a need for people with Web development, 
XML and media-streaming skills, Lee says. 

At some companies, the strategic value of data is 
driving demand for database and data efficiency 
managers. And other value-add projects call for skills 
in networking, security, disaster recovery and wire- 
less LANs, according to hiring managers and job 
placement experts. 


Risky Business 

Until recently, network security has been a diffi- 
cult sell. But the rise in worms and other malicious 
code attacks and concerns about liability and terror- 
ism changed all that. Security architects and people 
with risk-assessment, public-key infrastructure (PKI 
and business continuity skills are in demand, accord- 
ing to Tracy Lenzner, president of Lenzner Group, an 
IT security placement firm in Las Vegas. 

Paul Raines has firsthand knowledge of the strong 
demand for security professionals; he entertained 
three offers for executive-level security jobs in Janu- 
ary. The head of information risk management at 
London-based Barclay’s Capital, Raines has a résumé 
that includes such impressive highlights as oversight 
for the cryptography protecting launch sequences of 
Minute Man nuclear missiles and executive security 
roles at the U.S. Postal Service and the Federal Re- 
serve Bank of New York. 

But what most impressed hiring managers was 
Raines’ ability to “play ball” with senior executives, 
he says. 

“Executive hirers want someone who can couch 
security and risk management in the business terms 
they understand — the cost of control vs. the cost of 

Continued on page 46 
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I'l’ Jobs in High Demand 


DATA EFFICIENCY POSITIONS: 


= Database administrators 

Skills: SQL/Oracle/DB2 and supporting 
operating systems 

Salary: $71,500-$102,500, based on region 
and experience 


= Database development/ 

performance tuning specialists 

Skills: Database architecture; modeling 
and administration; deployment; data 
import/export, backup and recovery; Or- 
acle; Microsoft SQL Server; certifica- 
tions; database programming; Windows 
NT; Unix; and Web development. 

Salary: $69,500-$102,750, based on region 
and experience 


= Data management specialists (people 
who analyze data flow to identify critical 
data and waste and develop processes for 
data cleansing and efficiency) 

Skills: Network and systems background, 
project management, analytical skills and 
an understanding of data migration and 
data efficiency tools 

Salary: Consultants: $75,000-$125,000 per 
year; senior project managers: 
$125,000-$150,000 


NETWORKING POSITIONS: 


= Business continuity and 

disaster recovery specialists 

Skills: Network infrastructure, storage and 
backup technologies, network redundan- 
cy, project management, telecommunica- 
tions and vertical industry understanding 
of business methodologies, strategies and 
business impact 

Salary: Consultants: $80,000-$125,000 per 


The Skills Most Lacking 
In Recent College 
Graduates 


~ Writing and presentation skills 
/ Hands-on experience 


¥ Ability to conceptualize or see the big 
picture 


~ Oral communication skills 


Source: Computerworld survey of IT hiring managers, fall 2001. 


year for five to eight years’ experience; 
project managers: $125,000-$175,000 per 
year for seasoned veterans 


® Security professionals 

Skills: Network security, risk assessment, 
intrusion-detection and PKI expertise; 
multiplatform and multitool experience 
with leading cryptography, firewall and 
intrusion-detection systems; a network 
architecture or engineering background; 
and strong communication and analytical 
skills 

Salary: PKI project managers: 
$120,000-$140,000; professionals with 
risk assessment and intrusion-detection 
skills: $85,000-$120,000 


Network security administrators: 
$61,250-$84,750, depending on experi- 
ence and region. 


= Wireless networking professionals 
Skills: Network design, a working knowl- 
edge of the wireless networking standard 
802.lla, wireless application develop- 
ment, virtual private networks, firewalls 
and network segmentation, and telecom- 
munications experience 

Salary: Network-engineering-level posi- 
tions: $62,250-$87,000, depending on 
region and experience; telecommuni- 
cations managers: $70,000-$90,250 


= Internet/intranet developers 

Skills: Java, HTML, C++, Web servers, 
XML, SQL, database management 
systems, Oracle, operating systems and 
good communication skills 

Salary: Developers: $54,000-$75,500; 
senior developers: $69,500-$94,500 


The Most Effective 
Methods for Finding 
People With Top Skills 
/ Employee referrals 

~ Internet job sites 

~ Recruiting firms and headhunters 

/ Local newspapers 

¢ Local user groups 
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Hot Skills fora 
Cold Market 


Continued from page 45 


not controlling the risk,” Raines says. “You must be 
flexible. It turns hirers off if you have the purist point 
of view that it’s your way or no way.” 

And communication is important for nonexecutive 
positions as well, he says. Listing public speaking and 
writing experience on your résumé helps demon 
strate that you can communicate with end users, 
something employers across the board now demand, 
Raines explains. 

Since his hiring, Raines has staffed his unit with 17 
people. He says all of them possessed communica- 
tion, technical and strategic thinking skills, which are 
needed to run compliance checks, security aware- 
ness training, policy development and risk analysis 
for Barclay’s business units. 


Keep It Running 

The Sept. ll terrorist attacks have also incited busi- 
nesses to place more value on disaster recovery and 
business continuity planning, says Don Christian, 
partner in charge of PricewaterhouseCoopers’ opera- 
tional effectiveness team in New York. 

Christian is currently looking for project managers 
who are skilled in communications, infrastructure, 
telecommunications, storage systems and network 
redundancy. He says he also needs candidates who 
possess strong people skills and a deep understand- 
ing of vertical markets representative of Pricewater- 
houseCoopers’ client base. 

“If you’re developing a recovery and continuity 
plan for trading systems, you need to understand the 
business process of trading and settlement. And you 
need to be able to orchestrate people,” Christian 
says. 

Demand for security skills is also increasing in the 
emerging area of wireless networking. Employers 
want traditional networking design skills, a working 
knowledge of the wireless networking standard 
802.lla and wireless application development experi 
ence, says Sandeep Singhal, author of the Wireless 
Application Protocol and co-founder and chief tech- 
nology officer at ReefEdge Inc., a wireless LAN secu- 
rity and management vendor in Fort Lee, N,J. 

Hiring managers also want security savvy — 
knowledge of firewalls and network segmentation, 
virtual private networks and authentication. 

Anyone with this combination of skills is a slam- 
dunk for open wireless positions, says Lee. But this is 
also an area that’s too new for employers to be very 
picky, she says. 

IT managers are instead turning to “teams of 
skills,” and those teams are often outsourced, says 
Singhal. 

The flexibility to bounce between consulting and 
permanent positions will also help IT workers stay 
employed. One person with that flexibility is David 
Vaughan, a Los Angeles-based database architect. 

Even before the dot-com consultancy he worked at 


| 
| 
| 
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failed in October, Vaughan had lined up consulting 
work for an impressive hourly wage. A SQL database 
specialist, he’s studying Oracle so he can land a per- 
manent position at an animation company in the en- 
tertainment industry. 

The slow economy has taught Vaughan another 
important soft skill: self-marketing. That starts with 
his title. “A database architect makes more money 
than a database developer,” he quips. He landed his 
consulting gigs by asking clients if they’d like him to 
stick around and finish the work that would be left 
undone by the failing consultancy he worked for. 

Another key to Vaughan’s success is that he’s in 
the right place at the right time. Companies now rec- 
ognize that their data is a valuable strategic resource. 
But they’re struggling with how to harness the data 
spread around their networks, Lee says. 

PricewaterhouseCoopers has an entire consulting 
unit to serve this business need, called “data manage- 
ment.” John Benge, partner in charge of Pricewater- 
houseCoopers’ data management practice, says he 
needs project managers with a wide breadth of tech- 
nology and critical-thinking abilities. 

Data management team members and managers 
must know how to seek out data and uncover waste 
and redundancies across many platforms and sys- 
tems (particularly legacy, Web servers, databases and 
enterprise resource planning systems). They must 
also develop processes to mitigate waste and stream- 
line data availability. Moreover, senior managers 
must be able to handle “face time” with executives 
and even close a deal, says Benge. 


Web Development 

Database work also overlaps intranet and Internet 
development, which is why Fung and Vaughan are 
doing so well with their Web development and SQL 
skills. And now employers are starting to look to- 
ward XML development, a skill Fung says she hopes 
to learn early next year. 

“We're seeing more hiring for XML work on both a 
contractor and a permanent basis,” Lee says. “That 
requires traditional Web development skills — C++ 
Java, HTML and experience with the XML markup 
language, which is hard to get at this time.” 

Guillermo Payet, owner of Ocean Group, an IT 
consulting firm in Santa Cruz, Calif., spends more 
time on XML than he does with traditional Web de- 
velopment languages these days. He taught himself 
XML by studying the standards of the many XML 
working groups, such as the World Wide Web Con- 
sortium (www.w3c.org), and vertical industry groups. 

Most of his work calls for back-end integration and 
parsing between a variety of languages and applica- 
tions, including databases, so Payet needs the full bag 
of skills to get the jobs done. 

Some hiring managers and placement experts ex- 
pect the overall IT hiring picture to be bleak for the 
next year. But by expanding your technical skills and 
your soft skills, you're likely to stay employed during 
tough times, they say. 

The key to success is remembering that businesses 
are now looking for IT to add value, Lee says. “Even 
PC technicians can present their value in terms the 
business can understand. Just show them that you 
saved the company $17,000 in replacement costs by 
reconfiguring an expensive printer.” D 
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Hot Skills 


The following skills are still in demand, 
despite the slow economy: 


Languages 
* Java 
eC 


Web Development 

* HTML 

* Visual Basic 

* Java 

* Active Server Pages 


Development Tools 
¢ Oracle Developer 2000 
* Visual Studio 


Database Management Systems/ 
Relational Database Management Systems 
* Microsoft Access 

¢ Microsoft SQL Server 

* Oracle 

* DB2 


Operating Systems 

* Windows NT/2000 
* Linux 

¢ Other Unix 


Networking 
¢ TCP/IP 


Internetworking 

* Routing 

¢ Ethernet switching 
* 10Base-T switching 


LAN 
* Windows NT Server 
¢ Ethernet HTTP 


Office/E-Mail/Groupware 


¢ Microsoft Exchange 


Enterprise Applications 
* Oracle 


System Software and Support 

* Web server administration 

¢ Project management 

* Internet application development 
* Security 

* Help desk 


Source: Computerworld survey of IT hiring managers, fall 2001 
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An enterprise 
incentive man- 
agement system 
helps medical 
supplies maker 
Welch Allyn 
track sales and 
incentive plans 
more effectively. 
By Mathew 
Schwartz 








NY SALES FORCE WORTH ITS 

salt is driven by incentive 

plans. The more that sales- 

people sell, the greater 

their rewards. Chalk it up 
to human nature — carrots, when dan- 
gled, make us want to chase them. 

But in organizations that sell thou- 
sands of goods each month, correctly 
rewarding salespeople can be a tough 
job. Most companies track incentives 
using either homegrown software or 
spreadsheets, say analysts. But those 
methods are slow, and spreadsheets 
are error-prone, since so much data is 
entered manually. That’s a problem, 
since salespeople derive a majority of 
their income from incentives. Just as 
incentives can boost morale, poorly 
administered plans can zap it, fostering 
turnover. 

That situation drove Welch Allyn 
Inc., a privately held medical equip- 
ment manufacturer in Skaneateles 





Falls, N-Y., to adopt enterprise incen- 
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| tive management (EIM) software. EIM 
| applications can integrate sales data 

| from a company’s supply chain with its 
| back-end enterprise software, letting 

| managers more easily and automatical- 
| ly track sales force performance. 


In 1998, more than 70% of Welch Al- 


lyn’s 100 salespeople made their quotas 


— which represented a good year — 
and received their compensation. “The 
problem was, the company didn’t make 
its goals,” says Chris Keller, a business 
analyst at Welch Allyn, whose prod- 
ucts range from stethoscopes to blood 
pressure cuffs. Even though most of its 
salespeople met their targets, the com- 
pany had inadvertently set the wrong 
targets and didn’t know until it was too 
late. Company executives told Keller to 
fix the problem, which led him to EIM. 
Though the EIM software market is 
still emerging, Boston-based AMR Re- 
search Inc. reporis that more than a 
trillion dollars are spent worldwide 
every year on sales and variable com- 


Tracking |he 
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pensation plans. That volume is ex- 
pected to help drive the EIM software 
market to become a $1.9 billion indus- 
try by 2005. 

Given the economic downturn, the 
push is on for corporate managers to 
see financial data — especially sales — 
as quickly as possible and on a weekly 
or at least monthly basis. 

“You're going away from the broken 
ritual of the annual budget,” says AMR 
analyst Bettina Zwerdling. In the past, 
budget forecasts and analyses were 
made annually, she says, whereas 
nowadays, those figures need to be 
constantly updated. 

Regardless of whether a company is 
using customer relationship manage- 
ment (CRM) software, “one of the 
things that’s missing is having a good 
system of metrics” for gauging 
whether the incentive plan is optimally 
driving revenue, says Sharon Botwinik, 
an analyst at Forrester Research Inc. in 
Cambridge, Mass. With the wrong 
metrics or incentive plan, says 
Botwinik, “you're essentially just going 
out of business faster.” 

Poor incentives not only hit a com- 
pany’s bottom line; they also affect 
worker retention. In exit interviews, 
the 5% of Welch Allyn’s salespeople 
who left each year had one thing in 
common. “In every exit interview, 
every [salesperson] said a decent sales 
compensation system was needed, that 
using Excel spreadsheets to tell your 
sales force how they’re doing is not the 
best way,” says Keller. 


Gone Groveling 

But for Welch Allyn to automate its 
incentive program, it needed cleaner 
data — and more of it. Previously, the 
company had compensated its sales- 
people based on the ZIP code of the 
warehouse that shipped goods to cus- 
tomers. But as the company’s key dis- 
tributors consolidated in the 1990s, just 
a few were left, with large warehouses 
that ship nationally, so ZIP codes no 
longer correlated with sales areas. 

As a result, the company was trying 
to track 150,000 transactions per 
month using a 14-layer Excel spread- 
sheet populated by data that salespeo- 





~ BUSINESS 


—_ WelchAllyns | 
EIM Implementation 


GOALS 


1. Implement automated incentive man 

agement software to replace manual pro 
cesses and a 14-layer Excel spreadsheet 
and to track sales monthly, not quarterly 


2. Cajole 700 suppliers into sharing sales 
data to save salespeople time, reduce re- 
porting errors and track individual sales 
people’s performance 


3. Improve sales force retention (from the 
current turnover rate of 5%) through bet- 
ter incentive reporting and reduce IT's 
burden in managing it 


ple had to mooch from distributors. 
This also caused salespeople to essen- 
tially lose a full day each month as 
they struggled to compile the informa- 
tion manually and self-report their 
sales to management. 

To respond, Welch Allyn began eval- 
uating EIM software. Its short list in- 
cluded MCC Commission from Trilogy 
Software Inc. in Austin, Texas; True- 
Comp from Callidus Software Inc. in 
San Jose; and Incentive 2.0 from Incen- 
tive Systems Inc. in Bedford, Mass. 

Trilogy ultimately bowed out be- 
cause Welch Allyn has annual revenue 
of less than $500 million, and Callidus 
was nixed because of its application 
service provider business model. 

Welch Allyn selected Incentive, even 
though Keller worried that the compa- 
ny carried a higher risk of going under 
or being acquired because it was small. 
Incentive 2.0 is priced at $1,000 per 
user for the first 200 users and runs on 
Oracle, Windows NT, Sun Solaris or 
SQL Server for NT. 

Welch Allyn rewrote its sales incen- 
tive plans with the help of Incentive 
partner and integrator PCS Inc. in 
Boston. The company also began try- 
ing to get its distributors to share their 
sales data and sent salespeople beg- 
ging if they wouldn’t. “We got on our 
knees and pleaded,” says Keller. The 


STATUS REPORT 


1. Software from Incentive was rolled 
out in April; it provides a more accurate, 
monthly look at sales and better 
reporting 


2. Eighty-five percent of all revenue can 
now be tracked to the appropriate sales 
person, and the company expects an 
80% reduction in payment errors and 
adjustments. 


3. It's too soon to report a retention 
change, but Welch Allyn forecasts annual 
savings of $550,000 to $1 million from 

salespeople no longer doing self-reporting 


groveling worked: Welch Allyn can 


now trace nearly 85% of all revenue to 
the appropriate salespeople. 


Reviving the Patient 

Welch Allyn’s software integration 
began last November and went live in 
April, in time for the sales figures from 
the January-to-March quarter to be run 
through the system. 

The company spent $350,000 on the 
implementation and software license. 
John Tierny, national sales manager for 
hospital distribution business at Welch 
Allyn, predicts solid returns. “It will 

save us north of $550,000 to 
$1 million per year based on time sav- 
ings alone, once we have it up and run- 
ning,” he says. 

He also forecasts an 80% reduction 
in payment errors and adjustments, 
$100,000 saved per year from lower 
sales rep turnover and several hundred 
hours of recovered IT time, since a lot 
of data used in the Excel spreadsheets 
previously had to be manually import- 
ed from an IBM AS/400 system. 

“Historically, we’ve never been able 
to do the sales credit down to the level 
of user accountability,” says Tierny. 

The new software has changed all 
that. Now Welch Allyn feeds its Incen- 
tive data into Crystal Reports, which 
shoots an e-mail alert to senior man- 
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agement. In turn, managers can tweak 
individual bonuses and use the soft- 
ware to track how each salesperson is 
faring in hitting his numbers. Salespeo 
ple are also sent e-mail attachments 
with several reports detailing how they 
did the previous month and letting 
them drill down further into what 
they’ve sold and what it’s worth. 

Since the software went live in April, 
Welch Allyn is still tweaking reports 
and working out occasional snags. For 
instance, for a three- to four-month pe- 
riod, it took more than a day for the 
software to process a single month’s 
sales data, says Keller. Incentive even 
tually traced the problem to a bug in 
the software code, which it fixed. In 
the interim, the vendor ran Welch Al- 
lyn’s raw sales data itself. 

In the future, Tierny wants to put 
the sales data into a data warehouse 
and marry it with purchased demo- 
graphic data to better hone the compa- 
ny’s marketing and sales operations. In 
addition, Keller would like to install 
CRM software to make it easier to 
track large customers and identify 
their customer service needs. 

Rob Desisto, an analyst at Stamford, 
Conn.-based Gartner Inc., says that 
EIM/CRM integration, which is ex- 
pected to become commonplace in the 
next few years, would allow a salesper- 
son to look at the sales force automa- 
tion software and “not just see 10 sales 
opportunities, but the sales opportuni- 
ties and potential commissions for 
each opportunity as well.” 

And with commissions better tied to 
products that drive maximum revenue, 
companies will have come closer to 
creating the perfect carrot. Already, 
“it’s great for us,” says Keller. “For one, 
the sales force trusts us. And we have 
the beginning of a data warehouse 
where we can begin to make more 
strategic business decisions.” D 


Schwartz is a freelance writer in 
Arlington, Mass. Contact him at 
Mat@PenandCamera.com. 
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Dear Career Adviser 


be asked to create a table of 


| objects, discuss how to give a 
| user the right to create tables, 


or answer questions involving 


| Oracle forms, reports or Case 
| tools. 
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| ally being a security guru, says 


Naftali Bennett, president of 


Cyota, a credit card security 
| company in New York. 


Along with those technical 
skills, you’ll need to under- 


stand the bigger picture, the 
| strategy of security and how 
people think. Then you'll need 
| to come up with simple, realis- 
| tic solutions that counteract 
both hacking and human 
error, such as a forgetful em- 
| ployee leaving a password 
written on a Post-it stuck to 
his computer. 

Then, there’s the issue of 
the current economic environ- 
ment vs. the strength of this 
particular field. Will career 
opportunities in security re- 
main strong in the face of ris- 
ing unemployment and the 
threat of a recession? It’s sim- 
ply too soon to know, Bennett 
cautions. 

Therefore, in this market, 
given your experience, consid- 
er your $80,000 salary more 
than adequate. D 


I was laid off more than three months ago. I’m a business 
systems analyst/consultant with three years’ experience 
working at a major consulting firm after college. My 
skills are mostly in business processes and database ad- 
ministration (Access), and I’m working on obtain- 


| an Oracle job, pre- 
pare to give in- 
depth answers to 
interview ques- 
tions regarding 
your general 
| knowledge about 
the differences be- 
tween Oracle and 
Access as well as 
| technical ques- 
tions dealing with 
| triggers and stored 
| procedures. 

You might also 


Dear Career Adviser: 
I’m a software engineer in a 
| security company earning 
| $80,000 per year. I have six 
| years of expertise in C++, Visu- 
al C++, Win32, WinSock, NT 
services, multi- 
threaded program- 
ming, HTTP and 
HTML. Am I un- 
derpaid? 
— SECURITY 
SYSTEMS 


ministration, backup and re- 
covery, performance tuning 
and network administration. 
Realistically, even with the 
certification, there are already 
many qualified database peo- 
ple available in the market, 
says Andrew Pettit, vice presi- 
dent of staffing at Brentwood, 
Tenn.-based Majestic Systems 
Integration Co. Your learning 
curve might be easier moving 
| from Access to SQL Server 

| and then to Oracle. 

Should you decide to pursue 


ing Oracle Certified Profession 
al (OCP) credentials to solidify 
my background in databases. 
Will passing a test be enough to 
upgrade my work life, or should 
I just take whatever comes 
along, given the market? 

- WAIT OR WALK? 


Dear Security: 


You are in a hot 
field. But Visual 
C++, Win32 and 
HTML are the 
commodities, not 
the essence, of re- 


| 
| 
| 
| 
| 
| 
| 


FRAN QUITTEL is an expert 
in high-tech careers and 
recruitment. Send 
questions to her at 
www.computerworld.com/ | 
career_adviser. t 


Dear Or: 

Obtaining OCP status in- 
volves passing five exams in 
SQL and PL/SQL, database ad- 








sulting with the CTOs across 
the agency so that it’s in line 
with emerging trends and 


: cial Act Awards, usually as- 
: sociated with projects. And 
: you can get a bonus in your 


: ating in this kind of mode — 
: not this intense, with a bio- 
: terrorism threat on our own 


WORKSTYLES 


IT on the Front Lines 
In the War on Terror 


IT organizational structure: 
“About 80% of the staff are 
distributed — each center, 
institute and office within 
the CDC has its own IT 
group. About 80 to 100 peo- 
ple are in centralized IT. 
[They are] responsible for 
our core infrastructure ser- 
vices: the WAN, our telecom 
network, the Internet infra- 
structure, our Web presence, 
the e-mail infrastructure and 
our mainframe computing 
capability, etc.” 


Mission-critical systems: “The 
Public Health Surveillance 
System, a set of homegrown, 
CDC-engineered applica- 
tions to support disease de- 
tection and measurement of 
the nation’s health status. 
“As an agency, our job is to 
identify the health of the na- 


: tion and prevent adverse 
health events by assessing 
: risks and outbreaks and in- 
i tervening.” 


: Major projects: “We're work- 

: ing on a next-generation, In- 
i ternet-based surveillance 

: system for disease reporting. 
: ... The new system, [the Na- 
: tional Electronic Disease 

: Surveillance System], will be 
: a comprehensive, integrated 
i system. It will simplify IT 

: because we won't be sup- 

: porting so many separate 
systems.” 


: What kind of pressure is the 

: anthrax threat putting on IT? 

: “Clearly, the importance of 

: maintaining 24/7 operations 
: is one outcome of the cur- 

: rent situation. ... The CDC 

? has a 50-year history of oper- 


soil, but of responding to 

: health emergencies. ... 

: But clearly, this is different, 
and everyone senses the dif- 


: ference.” 


: IT training: “We have a CDC 
University, and there’s an 

: information resources man- 
: agement curriculum. We 

: revise it every year by con- 


new technologies.” 


Employee reviews: Midyear 
and year-end performance 
evaluations. 


: Compensation and bonuses: 
“Since we’re part of the fed- 
eral government, we have 
civil service compensation 
rules. But we also have Spe- 


: year-end review. 


: Workday: “We have a flextime 
environment, so people 

? come as early as 6 a.m., and 
normally they put in an 

: eight-hour day. While we’ve 

: always had shifts to maintain 
: 24/7 operations, the number 
: of people on the shifts has 

; expanded with the anthrax 


: Situation.” 


Centers for Disease 
Control and Prevention 


The last word: “The thing that 
; sets our agency apart is the 


: humanitarian mission to im- 


Interviewee: Jim Seligman, ClO 
Main location: Atlanta 


Number of IT employees: 450, plus 
more than 500 contractors 


Number of employees (end users): 
“We support upwards of 10,000 users. We 
have 8,000 employees [and] 2,000 visiting 
scientists, students and contractors. We 
have systems that are deployed nationwide 
to hospitals and health departments.” 


: prove the quality of life for 
i people in the United States 
: and around the world, plus 
i the strong passion that our 
? people have for that mission. 
: People are extremely dedi- 
: cated, and it’s a joy to work 
: in a place where people care 
? about the mission, their col- 
: leagues and the outcomes of 
: their work.” 


- Leslie Jaye Goff 
(Igoff@ix.netcom.com) 
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Let Us Know... 
What Makes You Such a 


Great Employer? 


Why is your company a great place to work for IT Professionals? 


Computerworld is again conducting its annual survey of the 

100 Best Places to Work in IT and is inviting you to visit our 
web site, participate in the survey, and tell us why your company 
is clearly among the very best places to work for IT professionals. 


Results of the survey will be published in the March 11, 2002 
issue of Computerworld, which will explore the different aspects 
of what makes for a top employer in information technology. 


Best Places to Work in IT are those that excel at: 
>» Exciting technology projects and work 
Training and education investments 
Diversity hiring and advancement 
Benefits and compensation 
Retention and employee job satisfaction 
Career and skills development 


If your company measures up, tell Computerworld readers your 
story, and the secrets to your success. 


The 100 Best Places to Work in IT survey, with instructions and 
methodology, is available on Computerworld’s web site through 
November 19. 


To nominate your company visit: 
www.computerworld.com 











100% of your disk capacity is now usable © 
for storage. We call this revolutionary idea 
getting what you pay for. 
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NOVELL'S GAMBLE 


Novell has built a strategy around 
an array of directory-enabled 
applications and services and is 
targeting e-commerce. Does the 
technology live up to the rhetoric? 
PAGE 54 


WHERE WINTEL 
MAKES SENSE 


Corporations weigh the risks and 
benefits of moving to high-end 
Wintel hardware like Unisys’ 
ES7000 — replacing many small 
servers with larger multiprocessor 
machines that can run Windows 
Datacenter for heavy-duty comput- 
ing tasks. PAGE 58 


QUICKSTUDY 


Reverse-engineering is the process 
of taking a piece of software or 
hardware, analyzing its functions 
and information flow, and then 
translating those processes into a 
human-readable format. Find out 
more in this week’s primer. PAGE 62 


SECURITY JOURNAL 


With security manager Vince 
Tuesday away, his team whips into 
action when it encounters suspi- 
cious port scans and connection 
attempts. But the culprit turns out 
not to be some new virus — just 
applications behaving badly. 

PAGE 64 
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NICHOLAS PETRELEY 


Side-by-Side Hypocrisy 


OME OF YOU MAY KNOW of humorist Jean Shepherd, the late 
author and narrator of the movie classic A Christmas Story, which 
was derived from his book In God We Trust, All Others Pay Cash. 
Like many others who grew up in New Jersey in the 1960s, I lis- 
tened to Shepherd spin his fictional yarns about his childhood 


every night on radio station WOR. I'll always regret | 
having been too timid to jump in and ask him for a 
chat when I stumbled on a conversation he was hav- 
ing on the 40-meter band. I’m not certain, but I think 

it was that conversation in which I heard Shepherd 
poke fun at some gubernatorial candidate who 
promised to get the mafia out of New Jersey. 

“Get the mafia out of New Jersey? The mafia is 
New Jersey!” Shepherd quipped. 

That quote haunted me all week like an apparition 
floating between me and my computer monitor, as if 
to prevent me from finishing this column until I used 
it. And I finally figured out why. 

With this new version of Windows, Microsoft has 
proposed a viable-sounding solution to DLL hell. 
Contrary to popular belief, DLL hell isn’t the fact 
that you can break one Windows application by in- 
stalling another. That’s DLL limbo. You don’t cross 
over into hell until you try to get both applications 
working at the same time. 

Microsoft’s get-out-of-hell-free card is called Side- 
by-Side Assemblies. The proposed solution isn’t 
so much a technology as it is a set of guidelines on 
how developers should use the Windows registry, 
header files and an XML-formatted manifest in order 
to run two or more versions of a Dynamic Link Li- 
brary at the same time without them tripping over 
one another. In some cases, developers must create 
even more registry entries than usual, and in other 
cases, developers must move settings they used to 
store in the registry to XML files. Last 
week, | illustrated how Microsoft fudged 
the registry in dangerous ways when it 
added multiuser features to Windows XP. 
In this case, Microsoft just abandoned the 
registry in places where it wouldn’t work. 

If you want to see how needlessly com- 
plex these DLL guidelines are, contrast 
them with how Unix developers avoid 
“so” hell (DLLs are called Shared Objects 
in Unix): They change the name of the li- 
brary file. That’s it. If an application needs 
Version 5.2 of the “ncurses” library, it 
loads a file called libncurses.so.5.2. The 


NICHOLAS PETRELEY is 4 
computer consultant and 
author in Hayward, Calif. 

He can be reached at 

nicholas@petreley.com. 


applications that use Version 4.2 won't break, be- 
cause they can still load the file libncurses.so.4.2. No 
installation programs will overwrite the old file with 
the new one, because the file names 

are different. 

There are other easy ways to avoid DLL hell. You 
can statically link applications to libraries or install 
libraries in the application’s directory, and develop- 
ers can always use and respect the internal version 
numbers in DLLs. 

So if the solution is so trivial, why is Microsoft 
dragging the registry and XML files into the picture? 
It unwittingly answered that question in some leaked 
documents from 1998. Those documents address the 
threat of Linux and are known as the “Halloween 
files” because they were leaked on Halioween. 

The documents reveal that Microsoft deliberately 
adds arbitrary layers of complexity to make it diffi- 
cult to deliver Windows features on non-Windows 
platforms. That’s what Side-by-Side Assemblies is all 
about. Microsoft depends on obscurity and complex- 
ity to survive. 

What customers should be asking is, if the solu- 
tion really is so trivial, why have their help desks 
been struggling with DLL hell for years? 

That’s what Microsoft doesn’t want you to ask. 
Because, with very few exceptions, you can trace 
almost every DLL conflict down to the core set of 
Windows system libraries, such as COMCTL32.DLL 
or MSVCRT.DLL. Almost all Windows applications 
use them. But Microsoft has exclusive 
control over these files. Independent soft- 
ware vendors that license the libraries 
sometimes make the mistake of overwrit- 
ing files at installation time, but Microsoft 
routinely overwrites them when you in- 
stall its applications. We’ve come to ex- 
pect that practice as a given. 

In short, the answer is that DLL hell 
exists only because Microsoft originated 
and perpetuated it. So it’s ludicrous for 
Microsoft to boast that it has devised a 
way for developers to get the DLL hell 
out of Windows. DLL hell is Windows. B 





MAGINE SOFTWARE that gives 
users a single view into a seamless 
network, wherever they are and 
wherever their browsers take 
them. It’s enabled by a directory, 
which becomes a sort of iiber op- 
erating system. But users don’t 
care about operating systems anymore, 
or directories either — all they care 
about is finding answers to their busi- 
ness problems. 

A bold vision, indeed, but Novell 
Inc. is betting the company on it. 

Novell introduced its NetWare oper- 
ating system in 1983. By the early 1990s, 
it had nearly 70% of the network oper- 
ating system market. But since then, 
pounded by competition from Win- 
dows, Unix and Linux, Novell’s sales 
and market share have shrunk. 

Now Novell is responding on three 
broad fronts. First, it has shifted devel- 
opment and marketing efforts from 
NetWare to products for collaboration, 
security, directory services and net- 
work management that have higher 
growth potential, particularly for 
e-business. 

Second, Novell hopes to evolve from 
a company that sells products to mid- 
level technical people to one that offers 
packages of products and consulting 
services to senior IT and business man- 
agers. That effort got a big boost in July 
when Novell bought Cambridge Tech- 
nology Partners Inc. and in one fell 
swoop boosted its consulting staff from 
350 to almost 3,000. 

Finally, Novell has adopted a strategy 
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oo Any Novell application... 


NDS eDirectory is the key to Novell's One 
Net technology strategy. Decoupled from 
NetWare, eDirectory now runs on a range 
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With NetWare’s market share 
dropping, Novell bets big on its 
‘one Net’ strategy. Is it enough to bring 
users back? By Gary H. Anthes 
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of “if you can’t lick ’em, sidestep ’em” to 
head off the threat from Microsoft Corp. 


| The vendor is evolving its products to 


open standards, such as XML, and to in- 
dependence from its flagship network 
operating system product, NetWare. 


| Novell claims that its One Net strategy, 
| built on its NDS eDirectory product, 


will give users a single view and point 


| of access to resources, whether they’re 


on public or private networks, intranets, 


| extranets or the Internet. 


Despite users’ praise for these 
changes, Novell continues to lose mar- 
ket share. As Windows application 
servers began to creep in, many organi- 
zations decided to standardize on Mi- 
crosoft’s network operating system. 
Now Windows 2000’s Active Directory, 
tightly integrated with Windows and 
other Microsoft applications, is com- 
moditizing directory services — anoth- 
er area in which Novell has excelled. 


NOVELL’S BIG BET 


NetWare 6, introduced last month, 
illustrates Novell’s new direction. It 
supports eDirectory, Novell’s directory 
system, and it adds end-user services 
such as iPrint, which lets end users 
with Web browsers find and use print- 
ers, and iFolder, which lets them ac- 
cess and synchronize files stored on 
file servers running a range of operat- 
ing systems. 

“We used to appeal to the technical 
people,” says Jim Tanner, Novell's di- 
rector of NetWare product manage- 

Continued on page 56 


& ..can run ona variety of server 
operating systems... 


DirxML. © ..and can share directory information 
', with other applications and services. 


: of servers. Novell is redesigning its appli- 
: cations and services to run on any eDirec- 
: tory-enabled server and provides syn- 


: other applications through its DirXML 


: chronization to directory information in 


: metadirectory software. Novell’s vision is 


: to enable users to have a single point of 
: access to all applications and services 
: through a common directory system layer. 





rHE BOOK OF EB SINESS 


GROWTH. 
HOW WILL YOUR INFRASTRUCTURE 
HANDLE IT? 


Infrastructure a tad skimpy? 


Our free Web seminar can fix that. 


Is your infrastructure scalable? Which application architec- 
tures are the most flexible? Does your hardware maximize 
performance? Before you answer, consider that a recent 
study revealed that a majority of Web apps and servers 
failed to scale when tested at their projected capacity. 
Fortunately, IBM and its Business Partners can help. 
IBM offers a wide range of complete and comprehensive 
solutions to enhance the performance and scalability of 
your mission-critical e-business infrastructures. 
Resources such as IBM Global Services help identify 
and eliminate compromising infrastructure issues that 
could limit performance. Software like IBM WebSphere 


provides a platform for deploying multiple apps at once. 


REGISTER NOW FOR A FREI 


And hardware like IBM @server with Capacity on Demand 
delivers instant growth at the touch of a button. 

To learn more about scalability, including mission- 
critical e-business. performance strategies. the impact 
of Java” and Linux? plus trends and recommendations, 
click into our Web seminar. It's absolutely free —just take 
a few seconds and register online. 

This 30-minute co-production by l'Tworld.com and 
IBM will bring you up-to-date information on the people. 
hardware and software that can help you plan for every- 
thing your system may require, including the unexpected. 
It’s what you need to know to keep your infrastructure 


reliable, sealable and —oh. yeah — looking good. 
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Continued from page 54 
ment. “With 6, it now becomes a set 


of services.” 


TECHNOLOGY 
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and scalability of Novell products and 
was initially skeptical of NT. But then it 
brought NT servers to host NT applica- 


THE TECHNOLOGY BEHIND ONE NET 


Novell has many products that fit into its One Net strategy. 


tions, including Lotus Notes. 
“The NT servers were good, and 


NetWare 6 also eliminates the re- 
quirement for historically trouble- 


prone NetWare client software, relying 
instead on the Windows network client. 
And it makes upgrades easier, Tanner 
says. “A NetWare service can be made 
available to any user without the ad- 
ministrator having to touch the client,” 
he says. “For example, you could deploy 
a single NetWare 6 server and then 
broadcast iPrint to 10,000 users.” 
What's more important is that Nov- 
ell’s products — from ZENworks to 
GroupWise — are being decoupled 
from NetWare. They now only require 
eDirectory, which runs on a variety of 
network operating systems, from NT 
to Solaris. Novell is betting that by ty- 
ing its own applications to eDirectory 
and then providing connections to oth- 
er directories through its DirXMI 
metadirectory service, users will em- 
brace it as the glue that connects all 
applications and directories, both in- 
side and outside the enterprise. 
Current Novell users and analysts 
generally applaud these developments. 
Aidan Garcia, a network services man- 
ager at Eastern Bank in Lynn, Mass., 
says, “We've liked what we've seen 
from Novell, even for integrating our 
Microsoft servers into our Novell 
Directory Services environment. Our 
external authentication is all done 
through Novell. So there’s one set of 
user accounts for everyone, not one for 
Unix, one for NT, one for the virtual 
private network and one for the Web.” 
Novell also has a distinct quality ad- 
vantage over Microsoft, says Dan Kus- 
netzky, an analyst at IDC in Framing- 
ham, Mass. “Microsoft is facing prob- 
lems of scalability, security and man- 
agement that Novell solved years ago. 
And Novell has better directory ser- 
vices, better management tools and 
better user-provisioning tools,” he says. 


Here are a few of the core elements: 


NetWare 6: The new version does 
away with the NetWare client and intro- 
duces iPrint and iFolder, which are browser- 
based services that help users find and use 
printers and access documents regardless 
of their location. 


NDS eDirectory: Novell Directory 
Services, relaunched as eDirectory two 
years ago, moves the company’s 8-year-old 
directory service to network operating sys- 
tem independence, with native support for 
Windows 2000, NT, Solaris, Linux and 
NetWare. EDirectory has become the base 
on which all other Novell products rest. 


DirXML: introduced last year, Novell's 
XML-based data sharing and synchroniza- 
tion metadirectory service continuously up- 
dates user profiles and other information 
between eDirectory and other enterprise di- 
rectories. Unless a target directory stores its 


And Novell has picked the right 
strategy to move it beyond the realm 


of legacy operating systems, Kusnetzky | 


says. “A lot of big organizations are be- 
ginning to see Novell as the glue that 
will link Windows clients to Windows 
servers — and to servers like Solaris,” 
he explains. 

Rockford Corp. in Tempe, Ariz., has 
a mixture of NetWare, Windows and 
Unix servers and relies on eDirectory 
and ZENworks to tie it all together. 
The manufacturing company is ex- 
tending the One Net concept beyond 
its walls. “Dealers want information 
from our LAN, so if I can give them — 
from a single point of administration 
— access to NT servers, Oracle [Unix] 
resources or whatever, we have the 
ability to get them in here with one user 


data in XML, special “connector” interface 
software is required. So far, Novell offers 
connectors for Microsoft Exchange, Lotus 
Notes, PeopleSoft and SAP software. 


GroupWise 6: Introduced in April, 
this version extends Novell's e-mail and 
collaboration product to support wireless 
devices and runs on any server running 
eDirectory. 


ZENworks: Novell's popular desktop 
and server management tools, which lever- 
age eDirectory, are being revamped. The 
next release of ZENworks for Servers will 
no longer require NetWare, and ZENworks 
for Desktops will eliminate the need for 
Novell client software. 


iChain: Novell's user authentication and 
authorization software is designed to work 
with eDirectory and provide single sign-on. 


name and password,” says Chris Duffy, 
communications manager at Rockford. 
“Internet, extranets, intranet all stitched 
together. That’s our vision.” 


THE 90% SOLUTION 


Despite the praise for Novell's direc- 
tion, many users are still quietly de- 
fecting to Microsoft. According to a re- 
cent survey by Stamford, Conn.-based 
Gartner Inc., 36% of NetWare users 
said they were converting or had con- 
verted their NetWare servers to Win- 
dows 2000 or NT. 

The Andersons Inc., a $1 billion agri- 
cultural products company in Maumee, 
Ohio, has been a satisfied NetWare user 
since 1988 but is nevertheless migrating 
to Windows NT. IT architect Judy Zilka 
says the company loves the reliability 





| they were reliable,” Zilka says. So she 


plans to simplify the infrastructure by 


| phasing out NetWare, even though she 
| considers it technically superior to NT 


in many ways. “It’s the Microsoft mo- 
mentum,” Zilka explains. “It’s Micro- 
soft dollars, their R&D, their marketing 
machine. If it works and it’s reliable 


| and you get 90%, maybe 90% is OK.” 


Should Microsoft’s momentum wor- 
ry Novell users? “I'd be comfortable if I 
were a Novell customer,” says Gartner 


| analyst Neil McDonald. “Novell is not 


going away. And as for these migra- 
tions from NetWare to Windows, it’s 
very difficult io find the cost justifica- 
tion or the technological justification.” 
But persuading new users to bring in 
eDirectory, the platform on which all 
Novell applications are now based, 


| could be difficult, says Rick Villars, an 
| analyst at IDC. “If you think of eDirec- 


tory as an operating system, it’s a chal- 
lenge. If someone is committed to Ac- 
tive Directory, then they are going to 


| think of this as an [operating system 


migration],” he says. 
“So the key for Novell is to make the 
decision on eDirectory to be more like 


| the decision companies make on data- 


bases, where they are looking for a solu- 


| tion to a business problem,” Villars says. 
| “That could be a better way to integrate 
| the human resource systems from 


merged companies, a better way to man- 


| age information you are providing part- 


ners through a portal, or a better way to 
integrate security controls for different 
ERP applications.” That, he says, is the 
approach Novell is now taking. D 


Quick 
I me www.computerworld.com/q?24438 
® For resources on Novell products 


and strategies, go to: www.computerworld.com/q?24439 


@ For a Computerworld interview 
with Novell CTO Carl Ledbetter, visit 


CHANGING 
FORTUNES 


1979: Novell Data Sys- 
tems launched as a maker 
of computers and disk operat- 
ing systems 


1983: Company changes 
name to Novell, welcomes 
CEO Ray Noorda, introduces 
NetWare file server software. 


1987: Novell acquires 
Santa Clara Systems, a 
maker of microcomputer 
workstations. 


1989: Company acquires 
Excelan, a maker of network- 
ing software and equipment. 


Early 1990s: Net- 
Ware’s market share 
reaches nearly 70% 


1993: Novell Directory 


Services (NDS) introduced. 


1992: Buys AT&T’s Unix 
operating system. 


1994: Acquires Word- 
Perfect and Borland’s 
Quattro Pro spreadsheet 
software. Noorda retires and 
is succeeded by Hewlett- 
Packard executive Robert 
Frankenberg, who later sells 
WordPerfect to Corel at a loss 
of more than $700 million. 


GroupWise is introduced. 


1995: Sales peak at 
$2 billion. 


1996: Frankenberg 
leaves following flat sales and 
is replaced by John Young. 


1997: Young departs; Eric 


Schmidt takes the helm, repo- 


sitions Novell products for the 
Internet, lays off 1,000 work- 
ers (18% of the workforce). 


Sales drop to $1 billion. 


1998: Novell shifts focus 
to directory services, intro- 
duces NetWare 5 and NDS 
designed for Internet and 
intranet applications, and 
ZENWorks. 


1999: Novell decouples 
NDS from NetWare with its 
launch of NDS eDirectory. 


2000: Novell introduces 


One Net vision and Net ser- 
vices software strategy, cuts 
workforce by 13%, launches 
DirXML and iChain. 


2001: Novell acquires 
Cambridge Technology 
Partners. Cambridge CEO 
Jack Messman becomes 
president and CEO of Novell: 
Schmidt remains chairman. 
Combined company aims to 
sell to senior management 
and emphasize e-commerce. 





Some VoIP conversations should be 
interrupted, but never by power problems 


APC provides all the components necessary for an end-to-end 
power protection solution for the VoIP environment. 
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¢ Extended back-up power in the event of an extended power outage 
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as service without interruption. 


¢ Instant notification of critical power/UPS issues. 
e Ability to remotely control selected power outlets in order to reboot 


hung switches. 


e Ability to ensure optimal temperature and humidity within remote closets. 
e Ability to keep track of and maintain health of power protection systems 


across the WAN, over time. 
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information for fast problem diagnosis 
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¢ 2-Post Racks / 4-Post Open Frame Racks 
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management software 
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; say 32-processor Wintel 
allow them to consolidate server 
cale up computing power inside 


Early adopters 
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a single box. By Lee Copeland 


AST OCTOBER, GARY CLARK looked 
into La-Z Boy Inc.’s data center and 
pondered two pressing concerns: 

rack upon rack of network servers 

that were multiplying like rabbits and 
the mounting costs of maintaining that 
rapidly growing server population. 

The furniture maker’s data centers currently house 
about 200 primarily two- and four-processor servers 
from Compaq Computer Corp. Clark, director of IT 
services at La-Z Boy, estimates that his server farm 
population was growing at an unruly rate of four to 
10 servers per month. 

But that was last year. Today, the $2.3 billion manu- 
facturer of kickback recliners is culling its herd of 
servers through consolidation. Instead of running 
Microsoft Corp.'s SQL Server 2000 applications 
on individual Compaq ProLiant 1600 and ML 370 
servers, the furniture company is replacing those 
machines with a single high-end workhorse from 
Unisys Corp., Clark says. 

“I’m trying to manage more [computing needs] 
with the same number of resources,” Clark says. 

“As opposed to continually adding servers, I can 
manage the same box with fewer people. It’s also 
allowing me to put more data in one place and man- 





You're a Candidate for a Wintel 
Multiprocessor Server If . 


1. You have so many smalil-box servers that even 
simple maintenance is becoming a serious problem. 


2. You need to manage more systems with fewer 


3. You need to integrate tightly with Windows-based 
applications and Microsoft server software. 


4. You need high capacity now, as well as the ability 
to scale up in the future. 


6. You maintain centralized databases in a distrib- 


7. You have the time and resources to fully test a new 
server configuration before moving production appli- 
cations to it. 





age one box as opposed to 12 or 16 boxes.” 
Like a handful of other early adopters, La-Z Boy 
is making the shift to high-end machines that are 


| optimized for Microsoft’s Windows 2000 operating 
| systems and built with Intel Corp.’s microprocessors, 
| and thus is testing whether the Wintel architecture 


deserves a place in the enterprise. 
The concept is simple: Pack the box with up to 32 
CPUs to give it greater processing power. Pair that 


| processing power with Microsoft’s heavy-duty server 
| operating systems, such as Windows 2000 Advanced 


Server and Datacenter Server, and the results 

amount to a back-office contender to compete 
with Unix-based big iron. This can be especially 
appealing for companies with Microsoft-centric 
computing environments. 

“Some IT managers are keen on larger, scalable 
systems for Windows because they require large, 
centralized databases across a distributed environ- 
ment,” says Thomas Manter, an analyst at Aberdeen 
Group Inc., a Boston-based market research firm. 
“There is also a lot of consolidation occurring, 
because IT managers are keen on bringing adminis- 
trative and maintenance costs under control.” 

La-Z Boy’s newest workhorse is the ES7000 server 
from Blue Bell, Pa.-based Unisys. The machine sup- 
ports up to 32 processors, but Monroe, Mich.-based 
La-Z Boy is using an eight-processor configuration 


| that’s divided into two four-way partitions. Clark 
| expects the server consolidation project to cut main- 


tenance costs significantly by reducing the number 
of machines within the data center. 


| Dollars and Sense 


Citing a need to consolidate its two- and four-way 


| processor servers from Unisys and Hewlett-Packard 


Co., Commonwealth Financial Network also made 


| the ES7000 the centerpiece of its data center, says 


Ed Bell, CIO at the Waltham, Mass.-based invest- 
ment brokerage firm. Besides the benefits gained by 
whittling down the number of servers Common- 
wealth must manage, Bell says, the promise of scala- 


| bility was the motivating factor in shifting to the 


Unisys box. 
I didn’t do it just for economic reasons,” he says. 
I did it for capacity.” 
The ability to partition processors makes the sys- 


| tem scalable, Bell adds. With partitioning, one ma- 


chine can concurrently execute separate applica- 


| tions on different sets of CPUs. Performance also 


gets a boost because these systems offer higher I/O 


| throughput. 


“It’s like having to water the entire lawn with a 
bunch of sprinklers and one small hose,” Bell says 
of the slower I/O capability of servers with limited 
CPU power. “We’re crunching a lot of information, 
so my lawn just got really big. It’s like having 10 times 
the hose capacity opened up.” 

The ES7000 box supports 48 I/O channels per 
domain partition at Commonwealth. The system 
manages a database of several hundred accounts 
within the mission-critical data warehousing appli- 
cation — on the same machine, Bell reports. 

Getting more out of a single box is also critical 
at La-Z Boy. Clark anticipates expanding the proc- 
essor capacity of the ES7000 by adding additional 
Intel 900-MHz processors, instead of purchasing 
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new commodity servers. “We're a manufacturing 
company, and this was a more aggressive approach 
than we’ve taken [in the past],” he says. “We expect 
to expand to 12 [additional] processor partitions in 
the next three to four months.” 

And while the smaller, less-expensive Compaq 
machines will remain the “workhorse” server of 
choice in La-Z Boy’s data centers, Clark says the 
ES7000 offers an alternative that provides greater 
horsepower combined with lower support and main- 
tenance costs. 


Test, Test, Test 


But while there are performance and consolidation 
benefits to the Wintel-based Unisys machines, mak- 
ing the shift isn’t easy. 

“Windows is more robust, but there are lingering 
doubts about scalability and reliability,” says Rich 
Partridge, vice president of enterprise servers at 
D.H. Brown Associates Inc., a market research firm 
in Port Chester, NY. 

Many users have a “not-so-fond remembrance of 
the blue screens of death, so Microsoft has an uphill 
battle to prove that it has a reliable operating envi- 
ronment,” Partridge says. 

“The market isn’t pounding on the doors to move 
quickly to this type of solution,” says Aberdeen’s 
Manter. “Microsoft is still overcoming the history 
of NT’s [lack of ] reliability. Windows 2000 has by 
far overcome that problem, but users are cautious 
about moving to Windows from a Unix or main- 
frame operation.” 


What La-Z Boy Did 


~ TECHNOLOGY — 


Manter recommends that IT organizations invest 
in thorough quality assurance and pilot testing be- 
fore migrating Windows-based applications into the 
back office or to new high-end machines from 
Unisys or other vendors. 

Clark’s systems support team began by conduct- 
ing 90 days’ worth of quality assurance testing. The 
migration of 12 Compaq servers onto one ES7000 


| server began in May but won’t be completed until 


the end of this month. 
“Right now, we're not running anything mission- 


| critical to our core business [on the ES7000]. There 


are not any manufacturing applications on that box 


| today,” Clark laments. Instead, the Wintel-based 


machine handles La-Z Boy’s systems management 


| and asset management SQL databases, some cus- 


tomer support data and help desk management 


| applications. 


Still, Clark says, the move to bigger iron has been 
worth it because server partitioning on the ES7000 
allows La-Z Boy to run several separate databases 
on the partitions without having to merge those 
databases. He says he also expects that the ES7000, 
which costs less than $500,000, will continue func- 
tioning in the data center for about eight years, 
instead of the typical three-year run of most lower- 
end network servers. 

Unlike Clark, Bell says the customer management 


| and data warehousing applications running on his 


ES7000 servers are absolutely mission-critical. 
“It’s how our 1,000 financial advisers look at client 


| [histories] and establish financial trends,” Bell says. D 


Faced with a growing number of small Windows-based servers, the furniture maker’s IT department 
opted to replace them with a single, large multiprocessor server that could scale up significantly in the 
future without adding to the growing maintenance burden. 


BEFORE 


12 Compag ProLiant 1600 and ML 370 servers 
running Windows 2000 Advanced Server 


One Unisys ES7000 with eight intel 900-MHz 
processors divided into two four-way partitions 
running Windows 2000 Datacenter Server 





Big Wintel Server 
Provides Healthy Services 


Secure server partitioning made the difference 
for one user. 


Health eConnex (HeC), a transaction-processing health 
care company in Park Ridge, Ill., replaced 10 Compag Pro- 
Liant DL360 servers with one ES7000 machine last Janu- 
ary, says Ray Peddin, HeC’s executive vice president. 

Peddin says partitioning enabled the ES7000 to sup- 
port more concurrent users and applications, as well as 
provide backup processing for mission-critical applica- 
tions. HeC performs electronic medical record manage- 
ment, claims processing and practice management for 
40,000 health care clients, so the importance of secure 
partitioning can't be overstated. 

“It gives us the capability to scale within a single 
architecture, as opposed to having a whole room full 
of servers,” says Peddin. “Client separation is critically 
important. Partitions are primarily for that functionality 
and fail-over. We cannot be down - period.” 

~- Lee Copeland 





Notebook computers keep 
getting smaller, faster, better 
and cheaper. And they’re doing 
itin very different ways. 

By Russell Kay 


IS HAPPENED again. Two 


TECHNOLOGY! 


to-9 height/width ratio and a 1,280- by- 
768-pixel resolution, and it’s great for 
working with spreadsheets or graphics. 


| This does make text very small at first, 


but the solution to that is simple. While 
using the Microsoft Works word proc- 


essor, for example, I just set the viewing | 


window to 200%. With this adjustment, 
and now that Microsoft has built its 
ClearType font-rendering technology 
into Windows XP, text on the display is 


| astonishingly sharp and good-looking 


on this machine — easily the best I’ve 
seen outside of a lab. 
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than the Sony Vaio 505 series and even 
the tantalizing HP Sojourn of a few 
years back. UM stands for ultramobile, 
and that’s a fair description. 

Complete with a 12.1-in. display, full- 
size keyboard, 128MB of RAM and a 
20GB hard drive, it weighs just 2.89 Ib. 
and costs $1,999. At this thinness, the 
company couldn’t fit in an optical dri- 
ve, so you'll have to use an add-on Uni- 
versal Serial Bus (USB) or PC Card 
device for that. 

The keyboard looks flat, but when 
you open up the machine, the nearly 


| size with simplified expansion via an | 
years ago, I reviewed asmall_ | add-on base. And the Toshiba Portégé | Fujitsu has had to shrink the usually full-size keys actually rise so that they 
notebook, the Gateway Fire- | 4000 doesn’t win in any single cate- | oversize keys like Shift and Enter, and | can deliver a full 3mm of key travel, 
Ant [Technology, April 19, gory, but as an overall package, it may | that makes the keyboard somewhat which makes for a better typing touch. 
1999] and fell in love with it. be the perfect set of compromises. | harder to use. This machine is more The PC-UM10 is a real attention-get- 
Ever since, I’ve been looking than twice as thick as the Sharp PC- ter, even with the case closed. Bring it 
for another notebook that Small Wonder UMIO, which lets it accommodate a into a meeting, and everyone will want 
combines the FireAnt’s basic efficien- | FUJITSU LIFEBOOK P: This is certainly | built-in optical drive. And the wide-for- | to see it. However, it has one major 
cy with more modern capabilities. a leading contender for the machine mat screen lets Fujitsu make the whole | drawback: Its memory isn’t expand- 
Most machines have been too heavy or | of my dreams. Fujitsu PC Corp.'s | package more than 2 in. shorter front to | able, although a 256MB model, also 
have lacked a built-in optical drive, or | LifeBook P is a small package witha | back. It’s an easy-to-carry package, and | nonexpandable, is in the works. I pre- 
they’ve had a touchpad (I don’t like | wide-format display, a built-in combi- | the shortened back-to-front dimension fer two-spindle machines (hard drive 
touchpads), a lousy keyboard or some nation optical drive (DVD/CD-RW) will make it more usable on an air- | and optical drive), so this sleek beauty 
other fatal deficiency. and Windows XP Home Edition. It plane, whether you’re doing actual doesn’t quite make the cut for me. But 
Now my search may be over. For | weighs less than 3.5 lb. and has a price | work or just playing a DVD movie. | if you don’t need a lot of expandability 
this review, I looked at four new note- tag of $1,499. Another model in this si | and don’t use a CD drive much, this 
books from Fujitsu, Sharp, Toshiba and | new series will come with 256MB of | Never Too Thin may be just the machine you’ve been 
Compaq. They all place a premium on | RAM and XP Professional. SHARP PC-UM10: Sharp Systems of Ameri- | looking for. 
being small without losing function. | With an 800-MHz Crusoe processor | ca’s new PC-UM1O is so thin that when , 
The Fujitsu LifeBook P is the smallest | from Santa Clara, Calif.-based Trans- | viewed from the side, it nearly disap- The Possibly Perfect Portable 
of the bunch, with an innovative wide- meta Corp. and 128MB memory, this | pears. At just 0.65 in. thick, it makes TOSHIBA PORTEGE 4000: I’ve used Toshiba 
format screen. The Sharp PC-UMIO is machine is more than capable of meet- | Apple Computer Inc.’s svelte Titanium | America Information Systems Inc. 
the thinnest laptop I’ve ever seen. The | ing my needs. The 9-in.-wide (10.6-in. | | notebook look fat and overblown by laptops off and on for nearly a decade. 
Compag Evo N400c combines small | comparison. It’s significantly thinner I’ve always respected them as well- 


Laptops to 
Live With 


diagonal) wide-format screen has a 15- 


SS 
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built and dependable, but I never really 


liked any of them. Given a choice of 
machines to use, I always picked some- 
thing else. Now, Toshiba has produced 
what may be the best all-around laptop 
I’ve ever seen. 

The Portégé 4000 is on the small 
side, with a 12.1-in. screen, but it’s not 
thin at 1.5 in. That thickness, however, 
allows for a built-in optical drive, and 
Toshiba has standardized on that so- 
useful DVD/CD-RW combination 
drive, which gives you an onboard 
backup option. At 4.4 Ib., it’s not super- 
light like the Sharp or the Fujitsu, but 
compared with the Dell Latitude I’ve 
been carrying, it’s light enough to 
make a great traveling companion. 

And this is one connected machine. 
WiFi (802.1lb) wireless Ethernet net- 
working is standard, with a hardware 
on-off switch for security. Bluetooth 
personal-area networking is an option- 
al feature. The machine I tested had 
both wireless systems, a 750-MHz 
Pentium III, 256MB of RAM, a 30GB 
hard drive, an infrared port, a standard 
RJ45 network port and a built-in V.90 
modem — plus two PC Card slots, a 
VGA output and two USB ports. 

The Portégé works well. The key- 
board is full size, with a good touch 
response, and there’s a pointer stick 
for cursor control. In appearance, the 
Portégé is a handsome machine — 
as striking as the Sharp, albeit quite 
different. The front and back of the 


TECHNOLOG 


Portégé are angled, making the overall 
side view almost a parallelogram 

and making it comfortable to carry 
in your hand. 

When you lift the lid, the hinge area 
for the display is cut away on both 
ends, leaving significantly more space 
for the two stereo speakers to work in. 
The speakers face toward the user, not 
straight up into the air, and the sound 
is much better than you'd expect from 
a machine this size. Toshiba thought- 
fully included a hardware volume con- 
trol, a feature I think should be stan- 
dard on all computers. 

The Portégé’s screen is as good as 
any 12-in. display I’ve encountered, 
and it’s brighter than most. The video 
card has 16MB of memory and sup- 
ports multiple monitors, allowing you 
to use an external monitor or projector 
at high resolution. 

Battery life is exceptional. Although 
Toshiba claims up to three hours for 
the standard battery, I got nearly four. 

After using the Portégé, I’ve come 
to really like it. I wish it were a pound 
lighter, but even at its current 4-lb. 
weight, it’s an all-around winner. 


Evo-lution at Compaq 

COMPAQ EVO N400C: The first of Compaq 
Computer Corp.’s newly branded Evo 
series is a replacement for the Armada 
M300. The Evo N400c comes in at 
0.9-in. thick and 3.5 Ib. It has a 12.1-in., 
1024-by-768-pixel display; a 20GB hard 


—— SHARP PC-UM10 


Sharp Systems of America 
www.sharp-business.com 


$1,999 


LIFEBOOK P 


Fujitsu PC Corp. 
www, fujitsu.com 


$1,499 


drive; and 128MB of RAM. And it has 
all the usual features we’ve come to 
expect: built-in modem, Ethernet, 
USB ports. As with its predecessor, 
there’s an extra-cost “mobile expan- 
sion unit” (MEU) base that clips onto 
the N400c’s base and holds a floppy 
and one other drive. 

Battery life is average — something 
more than two hours — until you start 
adding on extra batteries. The Evo can 
take a second external battery, plus up 
to two more in the MEU. That’s four 
batteries simultaneously. The Evo 
shines in networkability. For a price, 
you can get the machine with a “hump- 
back” unit that attaches to the lid — 
Compag calls it the MultiPort — and 
offers built-in Bluetooth and 802.11b 
wireless Ethernet. 

In terms of ergonomics, this Evo is 
an easy notebook to open up. There’s 
a handy pair of hardware up/down 
volume control buttons on the front, 
accessible when the lid is closed, and a 


Y, 


of 


pointer stick for cursor control. But 
the screen is a little darker and the 
keyboard a lot flatter than I prefer 

Che Evo N400c is typically Compaq, 
which to me means it’s well-engi 
neered and well-built but not cheap. 
The base machine is reasonably priced 
at $2,249, but you have to add $359 for 
the MEU with floppy and DVD drives, 
$189 for WiFi and $199 for Bluetooth. 
That makes an expensive package. 

If you’re in the market for a portable 
computer, you've got more choices 
than ever before, and these are good 
machines to consider. But if you wait, 
you'll find that prices have dropped 
yet again, and newer models may 
cause you to re-evaluate your selec- 
tions. This is one industry that doesn’t 
stand still. D 


| nke* S and Spe 4 
achines, gO to: www.computerworid.com/q?24837 


machin 


EVO N400C 


Compaq 


Computer Corp. 
www.compag.com 


$1,999 


TOSHIBA PORTEGE 4000 


Toshiba America 
Information Systems Inc. 
www.toshiba.com 


$2,429 
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HOT TRENDS & TECHNOLOGIES IN BRIEF 


TION 


Reverse-engineering is the pro- 
cess of taking a piece of soft- 
ware or hardware, analyzing its 
functions and information flow 
and then translating those pro- 


cesses 


s into a human-readable 
format. The goal is often to 


duplicate or improve upon the 


original item 


BY MATHEW SCHWARTZ 
HETHER IT’S 
rebuilding a 
car engine 

diagram- 

ming a sen- 
tence, people can learn about 
many things simply by taking 
them apart and putting them 

back together again. That, in a 

nutshell, is the concept behind 

— break- 


reverse-engineering 


ing something down in order | 


to understand it, build a copy 
or improve it. 

A process that was originally 
applied only to hardware, re- 
verse-engineering is ap- 
plied to 
and 


now 
software, 
even human DNA. Re- 
verse-engineering is especially 
important with computer hard- 
ware and software. Programs 
are written in a language, 
C++ or Java, that’s understand- 
able by other programmers. 
But to run on a computer, they 
have to be translated by anoth- 
er program, called a compiler, 
into the ones and zeros of ma- 


say 


chine language. Compiled code | 


is incomprehensible to most 
programmers, but there 


back to a more human-friendly 
format, including a software 
tool called a decompiler. 
Reverse-engineering is used 
for many purposes: as a learn- 


’s functionality. 


| compatible products that 


databases | 


are | 
ways to convert machine code | 
| second team of programmers 


ing tool; as a way to make new, 
are 
cheaper than what's currently 
on the market; for making soft- 
ware interoperate more effec- 
tively or to bridge data between 
different operating systems or | 
databases; 


undocumented 


and to uncover the 
features of | 


| commercial products. 


A famous example of reverse- 


| engineering involves San Jose- 


based Phoenix Technologies 
Ltd., which in the mid-l980s 
wanted to produce a BIOS for 
PCs that would be compatible 


| with the IBM PC’s proprietary 


BIOS. (A BIOS is a program 
stored in firmware that’s run 
when a PC starts up; see Tech- 
nology QuickStudy, June 25.) 
To protect against charges 


of having simply (and illegally) 
| copied IBM’s BIOS, 


Phoenix 
reverse-engineered it using 
what’s called a “clean room,” 
or “Chinese wall,” 
First, a team of engineers stud- 
ied the IBM BIOS — about 
8KB of code — and described | 
everything it did as completely | 
as possible without using or | 
referencing any 


approach. 


actual code. | 
Then Phoenix brought in a 


who had no prior knowledge | 
of the IBM BIOS and had nev- | 
er seen its code. Working only 
from the first team’s function- | 


Cyrix Corp. 
| cro Devices Inc., 


al specifications, the second 
team wrote a new BIOS that 
operated as specified. 

The resulting Phoenix BIOS 
different from the IBM 

but all intents and 
purposes, it operated identi- 
cally. Using the clean-room ap- 
proach, even if some sections 
of code did happen to be iden- 


was 


code, for 


| tical, there was no copyright 


infringement. Phoenix began 
selling its BIOS to companies 


| that then used it to create the 


first IBM-compatible PCs. 


Other companies, such as 
and Advanced Mi- 
have success- 
fully Intel 
Corp. microprocessors to make 


Intel-compati- 


reverse-engineered 


less-expensive 


| ble chips. 


Few operating systems have 
been reverse-engineered. With 
their millions of lines of code 

compared with the roughly 
32KB of modern BIOSs — re- 
verse-engineering them would 
be an expensive option. 

But applications are ripe for 
reverse-engineering, since few 


software developers publish 


their source code. 


interface (API) should make it 
easy for programs to work to- 
gether, but experts say most 
APIs are so poorly written that 
third-party software makers 
have little but to 
verse-engineer the programs 
with which they want their 
software to work, just to en 
sure compatibility. 


choice re- 


| Ethical Angles 


Reverse-engineering can also | 


security flaws and 
questionable privacy practices. 
For instance, 
ing of 


expose 


reverse-engineer- 
Dallas-based Digital: 
Corp.'s CueCat 
scanning device revealed that 
each reader has a unique serial 
number that the de- 
vice’s maker to marry scanned 
with user registration 


Convergence 


allows 


codes 


data and thus track each user’s | 


habits in great detail — a previ- 

ously unpublicized feature. 
Recent legal moves backed 

by many and 


large software 


The Clean-Room Approach 
To Reverse-Engineering 


is Description 


Oo 


One person or group 
takes a device apart 
and describes what it 
does in as much detail 


as possible at a higher 
level of abstraction 
than the specific code 


Description 


a7 


“Chinese wall” 


B 


That description is 
then given to another 
group or person who 
has absolutely no 
knowledge of the spe- 
cific device in question. 


G 


This second party then 
builds a new device based 
onthe description. The 
end result is a new device 
that works identically to 
the original but was created 
without any possibility of 
specifically copying the 
original. 


@ Are there technologies or issues you would like to learn about in QuickStudy? Please send your ideas to quickstudy@computerworld.com. 


Technically, | 
an application programming | 


| of tools 
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verse-Engineering 


hardware makers, as well as 
the entertainment industry, 
are eroding companies’ ability 
to do reverse-engineering. 
“Reverse-engineering is le- 
gal, but there are two main 
areas in which we're seeing 
threats to reverse-engineer- 
ing,” says Jennifer Granick, di- 
rector of the law and technolo- 
gy clinic at Stanford Law 
School in Palo Alto, Calif. One 
threat, as yet untested in the 
courts, comes from. shrink- 
wrap that explicitly 
prohibit anyone who opens or 
uses the 
verse-engineering it, she says. 
The other threat is from the 
Digital Millennium Copyright 
Act (DMCA), which prohibits 
the creation or dissemination 
information that 
could be used to break techno- 
logical safeguards that protect 
software from being copied. 
Last July, on the basis of this 
law, San Jose-based Adobe Sys- 
tems Inc. asked the FBI to ar- 
rest Dmitry Sklyarov, a Russ- 
ian programmer, when he was 
in the U.S. for a conference. 
Sklyarov had worked on soft- 
ware that cracked Adobe’s 
e-book file encryption. 
The fact is, even 
board reverse-engineering of- 
ten requires breaking such 
safeguards, and the DMCA 
does allow reverse-engineer- 
ing for compatibility purposes. 
“But you're not allowed to 
see if the software does what 
it’s supposed to do,” says 
Granick, nor can you look at it 
for purposes of scientific in- 
quiry. She offers an analogy: 
“You have a car, but you’re not 
allowed to open the hood.” D 


licenses 


software from re- 


or 


above- 


Schwartz is a freelance writer in 
Arlington, Mass. Contact him at 
Mat@PenandCamera.com. 
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Attack That Wasn’t 


~ TECHNOLOGY 
The Case of the Worm 


Suspicious port scans raise alarm, but the apparent 
attacks turn out to be applications behaving badly 


BY VINCE TUESDAY 
WAS HAPPILY DREAMING about a 
well-secured network when the 
beeping of my cell phone woke 
me. It was the office. I'd been 
away from work for a few days 
and was making an effort not to read my 
e-mail or check on the se- 
curity team. The call gave 
me an excuse to find out 
what had been going on. 

The security _ staffers 
were calling me to see if 
they had responded appro- 
priately to an incident. We 
have a script that regularly 
analyzes the firewall logs 
to identify any changes in 
behavior, which we cross- 
check with our intrusion- 
detection system. I normal- 
ly review the script results 
myself, but while I was 
away, the staff took over. 

The latest report was full 
of blocked connection at- 
tempts. We expect many 
probes to come from the Internet, but 
these were a little worrisome because 
they came from inside the firewall. 

The security staffers were thrilled to 
think that they had uncovered a new 
worm. They analyzed the behavior and 
could see many machines trying to con- 
nect to the same handful of external 
machines; a few internal machines also 
appeared to be conducting sequential 
outbound port scans. 

This behavior suggested that many 
machines were infected with a stub 
virus that was going out to a central lo- 
cation to get updated virus code and 
download the rest of the worm. Then 
the virus would scan to find new hosts. 

Our protections were working to a 
certain extent: The firewall was block- 
ing most of the infected machines from 
downloading further code, and the 
virus was retrying over and over again. 
A few copies had apparently managed 
to get the full package and had begun to 


| virus 
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search for other machines to infect. 
The staffers called me because they 


| had been unable to collect a sample of 
| the infected code to send to the anti- 


teams. They hadn’t uncovered 


| any applications that shouldn’t be on 


the attacking machines, nor could they 
determine what was open- 
ing so many network con- 
nections. 

I reminded them of our 
firm’s virus-handling in- 
structions: Had they car- 
ried out all the steps for a 
suspected virus outbreak? 
We segregate the network 
to halt the spread internal- 
ly by splitting off critical 
servers, delay all file at- 
tachments in the e-mail 
system in case they’re be- 
ing used to spread the virus 
and notify key contacts in 
our business units of the 
attachment delays. They 
had indeed carried out all 
of these steps. 

We discussed using incident-han- 


| dling tools to help find the subverted 


application. I also asked them to track 


| down the systems from which the virus 


was trying to download the code. If we 


| could shut down those systems, not 
| only would we protect ourselves in the 


event that the code found a way around 
our firewall, but we might also help 
protect other companies. I suggested 


| that the staffers contact our key securi- 
| ty product vendors and check www.in- 


cidents.org to see what other people 
were saying. 


| From Bad to Worse 


The deeper the security workers dug, 
the worse the situation looked. They 


| found different applications initiating 


the connections from each desktop, and 
the checksums (values used to check 
file integrity) on the executable files 
matched those on fresh installs from 
the original installation CDs. Did this 


| mean the original media was infected, 
and some kind of time bomb had been 
| initiated? Perhaps the virus was clever 
| enough to patch the kernel so the 
checksum software returned bogus val- 
ues? We worried about how dangerous 


| this issue could be. How do you clean 


| up an infection when you can’t tell the 

| infected from the clean applications? 

| No other company was experiencing 

| the same problems. The staffers did 

| have a couple of names, however: 
AvantGo and RealNetworks. 

I paused and asked them to repeat 

what they had just said. 

Now I knew why the application 
| checksums matched. The applications 
| hadn’t been tampered with: This was 

designed behavior. RealPlayer down- 
| loads updates and playlists automati- 
| cally, and AvantGo retrieves new items 
| to be loaded onto handheld computers. 


| These are two examples of the many 
| applications that “phone home” with- 


out asking the users, or at least without 


| the users understanding what they are 


accepting on the default install. 
Until recently, we had forced all 


| browsers to use the proxy settings but 
| had allowed some applications to by- 
| pass the proxy to download updates. 
| After the Nimda attacks, we changed 
| that and blocked all nonproxy access. 


This explained the machines that 
were trying to connect to outside 
But the port scanning re- 
mained a mystery. I asked the security 
staffers to repeat the list of anomalies 
| they were seeing. They mentioned that 
| the sequential scans weren't to differ- 
ent ports, as I had assumed. Instead, the 
| number of the source port was rising 
incrementally, but the destination port 
|} was always Port 80. 

Again, this is normal behavior for 
| some badly written software. Our fire- 
wall returned a warning page explain- 
ing that users needed to use the proxy 
settings. When these applications re- 
ceived this warning page, they knew 
they had received something, but it 
wasn’t the pages requested, so they 
kept retrying. The Web server operat- 
ing system was supplying a new source 
port with each retry, and the steadily in- 
| crementing value in the firewall log had 


| servers. 








| 
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SECURITYBOOKSHELF 


This week, I've had the chance to read 
the following two recent books: /ncident 
Response, by Kenneth R. van Wyk and 
Richard Forno (O'Reilly & Associates, 
2001) and /ncident Response: Investi- 
gating Computer Crime, by Kevin 
Mandia and Chris Prosise (McGraw-Hill 
Professional Publishing, 2001). 

Both are based on the experiences 
of commercial incident-response teams: 
Centreville, Va.-based Para-Protect Ser- 
vices Inc. in the case of the O'Reilly 
book, and Irvine, Calif.-based Found- 
stone Inc. for the McGraw-Hill title. 

The O'Reilly book reads like a hastily 
thrown together set of information, 
most of it seemingly copied from Web 
pages. The McGraw-Hill book is signifi- 
cantly better. It draws you in by provid- 
ing detailed examples and screen shots. 
While the O'Reilly title offers an over- 
view of forensics in a few pages, the 
McGraw-Hill tome has page after page 
of reviews and screen shots to help you 
select the best product. It also covers 
the overview and operational aspects to 
get you up and running and help you 
avoid the worst “gotchas.” | heartily rec- 
ommend the McGraw-Hill title. 


LINKS: 


www.foundstone.com/rdlabs/ 
proddesc/fport.html: Fport, a handy 
utility for checking ports opened by ap- 
plications on Windows NT servers, is 
available at Foundstone’s Web site. 


http://freshmeat.net/projects/ 
Isof: This Unix equivalent of Fport is 
designed to find files opened by a 
process, but it can also find communi- 
cations ports that are in use. Download 
a copy from the Freshmeat.net open- 
source software Web site. 


caught the eye of the reviewer as the 
classic symbol of a port scan. 

By the time the situation was re- 
solved, it was late in the evening. The 
security team had learned a valuable 
lesson, and it has a strong incentive to 
not get carried away with an incident 
the next time. 

Do you have a story about false 
alarms to share? I welcome your com- 
ments in the Security Manager’s Jour- 
nal forum. D 


ick 
Quic 


For more on the Security 
Manager's Journal, including past 
journals, visit: 
www.computerworld.com/q?q2000 





&§ This week's journal is written by a real security manager, * Vince Tuesday,” whose name and employer have been disguised for obvious reasons. Contact him at vince.tuesday@hushmail.com or go to the Security Manager's Journal forum. 
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To deliver on the promise of e-business, you need a complete, trusted 
online environment. This means knowing who you're doing business 
with and giving them access to the right resources. That’s where authori- 
zation comes in. Authorization empowers organizations to safely push 
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Monitoring ‘Tool Keeps 
‘Web Apps on ‘Track 


Dirig’s software monitors ware monitors Web a application 
performance and responds to problems 


BY AMY HELEN JOHNSON 
HEN YOUR 
company 
provides 


custom net- | 


working ser- | 


vices for global enterprises, 
the performance of your infra- 


structure becomes a mission- | 


critical business factor. 


Faced with maintaining high | 
service levels at GiantLoop | 


Network Inc., an optical net- 


working supplier in Waltham, | 
Bob Catalano built an | 


Mass., 


operational support center 


that includes application mea- | 


surement, and 
management 


Nashua, N.H.-based Dirig 


monitoring 


Software Corp. Dirig’s Rely- | 


ENT product gives GiantLoop 


a way to increase the reliability 

of its infrastructure, says Cata- 
lano, vice president of technol- | 
ogy and service management | 


at GiantLoop. 


Dirig President and CEO | 
Bob Hoyt says Dirig’s products | 


collect data and _ statistics 


on system-, application- and | 
component-level computer re- | 
sources; present a picture of | 
their use, performance levels | 
and overall health; and per- | 
form scripted actions in re- | 


sponse to problems or events. 


Since enterprises need their 
intranets, extranets, Web ap- | 
plications and networks run- | 
ning well to do business, just | 
pinpointing the online or off- | 
line status of different compo- | 
good | 
enough, says Hoyt. The perfor- | 


nents is no_ longer 
mance level is the necessary 
metric. 

RelyENT is Dirig’s manage- 
ment product for database, 
messaging, Web and applica- 
tion servers. XSPress is a man- 
agement module for applica- 
tion service providers (ASP) 
that allows an ASP’s customers 


software from | 


to log in and check perfor- | 
| mance figures. And the newest 
| product, Fenway, monitors the 
| components for 


transactions. 


Dirig’s products can be in- | 


stalled on machines running 
Windows NT, Windows 2000, 
Sun Solaris, HP-UX, 
AIX, Linux, FreeBSD and BSDi 


e-business | 


IBM's | 


Unix. Agents can monitor sys- 


| tems and applications running 


the same set of operating sys- 
tems. The agents query the 


targeted components for the | 


health statistics that are part of 
their built-in functions. 
What's different about Dirig, 


says Jeb Bolding, a senior ana- | 
| lyst at Enterprise Management | 
| chose RelyENT because Giant- 

Loop could pick out just the 
modules it wanted instead of | 


Associates Inc. in Boulder, 


Colo., is that its products are | 
| aimed at midtier companies | 
| that don’t have the time and | 
| funds to develop a system | 
| other management software, 


DIRIG EXECUTIVES (from left): Thomas Cloos, Jon Cook 


and Paul LaFrance. 


Dirig Software 
Inc. 


One Indian Head Plaza 
6th Floor 

Nashua, N.H. 03060 
(603) 889- 2777 


Niche: IT Infrastructure monitoring 
and management software tracks 
the software components used in 


* Robert F. Hoyt, president and 
CEO 

© Paul J. LaFrance, chief technolo- 
gy officer and co-founder 

Thomas T. Cloos, vice president 
of professional services and 
co-founder 


Milestones: 
* Nov. 1997: Company founded 





| ® Aug. 2000: 


RelyENT released 
© April 2001: Fenway com 
released 


Burn money: $5 million 

from JMI Equity Fund LP, Ca- 
bletron Systems Inc. and Long- 
worth Venture Partners 


Products/pricing: Fenway, Rely- 
ENT, xSPress; $450 to $4,500 per 
server. Installation ranges from 
$50,000 for small projects to sev- 
eral million for large ones. 


Customers: SilverBack Tech- 
nologies Inc., GiantLoop, Netvein 
Inc. and others 


Red flags for IT: 

* Products don’t currently integrate 
with enterprise management tools. 
* Reporting and administration 
functions may need time to mature. 





| based on monitoring frame- 
works products like Hewlett- | 
Packard Co.’s OpenView or | 
IBM’s Tivoli. Although Dirig | 
doesn’t provide the breadth of | 
features of those products, it | 


| Management by 
Metrics 


does monitor the critical 
| pieces and has the benefits of 
quick deployment and easier 
management, he says. 
GiantLoop considered buy- 
ing Concord Communications 
Inc.'s eHealth Suite and BMC 
Software Inc.’s enterprise man- 


| agement suite, says Catalano, | 
| but it chose RelyENT because 


he liked the product’s agent 
technology. The firm also 


buying functions that over- 
lapped those provided by 


he says. RelyENT monitors 
processor usage, memory us- 
age, disk-space usage and ap- 


| plications such as relational 


databases, Web servers, Web- 


| application servers, network 
| management applications and 


event notification software. 
The Dirig software doesn’t 
use many system resources 


| and is easy to install and con- 
| figure, says Calalano. He has | 
| minor requests for improve- 
| ment, however. For example, 
| Catalano would like to be able 


to assign users who don’t have 
administrator status the 
oO, rights to perform specif- 

ic tasks. 
Another benefit of 


“Tgin, y Dirig’s software, says 
mp, AN], v2, Bolding, is that its in- 


orn 


terface was designed to 
make it possible for less 
technical people to adminis- 
ter the products. But, he warns, 
Dirig’s products don’t have the 
depth of specific application, 
operating system and _ hard- 
ware modules of some of its 
competitors’ bigger products. 
Dirig’s future enhancements 
will include improving report- 
ing modules so data is more 


| presentable and meaningful, 


integrating its products with 
the monitoring frameworks 
products and adding support 
for trouble notification to be 
sent to handheld devices. D 


Johnson is a Computerworld 
contributing writer in Seattle. 
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the buzz 


STATE OF 
THE MARKET 


The market for Web application compo- 


| nent monitoring tools is relatively small 
| today, says Corey Ferengul, an analyst at 


Meta Group Inc. in Stamford, Conn. 
However, he says he expects it to in- 
crease to several hundred million dollars 
in the next few years as Web operations 
continue to expand. 

Dirig has a year's lead on its competi- 
tors in providing Web application moni- 
toring tools, but other vendors are jump- 
ing in, says Ferengul. 

The mistake that Dirig has to avoid, 
he says, is sitting still. The company 
needs to expand into other underser- 
viced monitoring areas, like network 
storage, Ferengul says. 

Fenway's ability to provide details on 
Web operations is a natural complement 
to Dirig's core focus on managing net- 
work hardware and infrastructure, 
Ferengul says. With more and more cor- 
porations building Web-based opera- 
tions, performance levels - not just net- 
work availability - are key metrics for IT 
to manage, he says. Dirig’s two closest 
competitors today include the following 
companies: 


BMC Software Inc. 


Houston 
www.bmc.com 


BMC’'s products cover more areas than 
Dirig's, including database and network 
monitoring, says Ferengul. But Dirig’s 
software costs less and is easier to use, 
he says. Plus, it provides greater flex- 
ibility: Dirig customers can do more with 
the agents it provides, according to 


| Ferengul. 


Precise Software 
Solutions Ltd. 


Westwood, Mass. 
www.precise.com 


Precise’s Insight competes most directly 
with Dirig's Fenway product, says 
Ferengul. The main difference between 
the two companies is how they started, 
he says. Precise began with in-depth 
Oracle database monitoring, then added 
Web monitoring. Dirig covers Web 
servers and operating systems but 
doesn't provide the wealth of manage- 
ment features for databases that 
Precise’s tools do, he says. 

- Amy Helen Johnson 





THE CATALOG OF @ BUSINESS 


EXCHANGE YOUR EXCHANGE. 


{ND SAVE UP TO 38%. 


the IBM @ server iSeries." Want a less 


expensive, smarter alternative to upgrading to Microsoft 


Pre senting 
Exchange 2000? Want to keep running the Outlook 
program your users love. 
Reliability but on a server you'll love 
even more? Exchange your 
Sine Exchange for the iSeries 
server. It lets you support 
thousands of 
Fig. 1. iSeries Value Proposition. 
Outlook users 
on one reliable, low-maintenance server. 
With iNotes™ Access for Microsoft Outlook 
it’s easy to consolidate multiple Exchange 
servers onto a single iSeries running Lotus 
Domino” with robust, scalable power. And 
in the process, help bring reliability, secu- 
rity and functionality up — while keeping 


upgrade, service and help-desk costs down. 


k-mail graduates to reliability. The 
architecture of the iSeries provides a 
mainframe-inspired environment, where Domino parti- 
tions are isolated from one another. And problems in one 
partition will rarely affect the users in other partitions. 


Partitions can even automatically restart when necessary. 


Save up to 38% vs. I vchange 2000. If reliability and 
consolidation aren’t reasons enough, consider this: 


Migrating your Outlook system to Domino for iSeries can 


@ ibm.com/eserver/inotes1 | (/ 800 426 7777 code 6N1DS 


“LEGAL NOTE: |For full details, see www.i n/eserver/iseries/domino/inotes/compare.htmi. IBM, the e-bu: 


s 
are trademarks or registered trademarks of Le lopment Corporation. Microsoft is a registered trademark of Microsoft ( 


rights reserved. 


(server 


Reliable, scalable servers for e-business. 


YES, 38%. 


cost up to 38% less than upgrading 

both your hardware and software to 

Microsoft Exchange 2000. 

Same front end, better back end. 

dae ; 4 Fig. 2. Happy CFO. 

lo your Outlook users, migration to 

Domino is virtually seamless. They use the same client 

software they're used to, but can now get the benefits of 

Domino, like working offline and full-text search. It also 
provides optional failover and load-bal- 
ancing for e-mail, easier administration. 


and use of Domino e-collaboration apps. 


It only vets better IBM is one of the 
world’s largest software companies, 
the leader in middleware, and the 
name in reliable servers. To find out 
more about how IBM can help you, 
register now for a free, live e-briefing 
and Q&A session with an IBM expert. 
In just one hour (and right from your 
desk) you'll find out more about the 
iSeries and iNotes Access for 
Microsoft Outlook, including SAVE 

how to save up to 38%, and upto 38% 
other reasons why it makes RECISTER 
so much sense to exchange FOR OUR FREI 
your Exchange. Shouldn't ns 


you call or click today? 





logo, and iSeries are trademarks or registered trademarks of International Bus achines ( tior Lotus, De rT 
orporation. Other company, product and service names may be trademarks or servic S of 0 2001 IBM 
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In today’s heightened awareness of security, 
information technology is more important than 
ever. Conservative estimates place the total market 
for IT security - authentication, authorization and 
security administration — at $8 billion within the 
next three years. 

Eagle Alliance, a joint venture of Computer 
Sciences Corporation and Northrop Grumman, sup 
ports the National Security Agency. Bill Duveneck, 
director of information systems security for 
Eagle Alliance, says the alliance project, known as 


Groundbreaker, addresses data availability, integrity, 


authenticity, confidentiality and non-repudiation. 


“The United States’ response to the tragedy of Sept. 


11 put a spotlight on the importance of our client's 
mission and made absolutely clear Groundbreaker's 
mission,” Duveneck explains. 

“Hands-on and analytical skills will be needed 
in areas associated with operational network and 
system monitoring and problem resolution,” 





IT CAREERS 


Advertising Supplement 


EI 


IT Careers in Security 


Duveneck says. He looks for experience in networks, 
desktops, enclave protection, operations and knowl 
edge of the various governmental policies that cover 
information assurance. Eagle Alliance has mid- and 
senior-level positions available, as well as entry 
level. “We're initiating and building something brand 
new,” Duveneck adds. “What makes us an employer 
of choice is the important work we're doing.” 

At Secure Computing, Mary Ann Stoffels, vice 
president of human resources, says demand for 
products and services that ensure safe, secure 
extranets for e-business has heightened in the 
past few weeks. Secure Computing, with $39 million 
in 2000 revenues, offers career options in three 
development divisions —- Advanced Technology, 
Network Security and Enterprise Security, as well as 
traditional roles in sales, marketing and operations. 
“Because of our size, each person has the opportuni- 
ty to be a leader and be recognized for the 
contribution you make,” Stoffels says. 

The company looks for A-level players with 
industry experience, a track record for delivering 
results and who have the high-energy profile 
demanded by the market. “We work hard, but we 
also invest in ongoing learning. Our company is 
known for doing the basics and doing them well,” 
she adds. 





State Farm Insurance, based in Bloomington, IL, 
values the ability to anticipate security risks. “We 
were already on a path of increased awareness prior 
to Sept. 11,” explain Jeff Stempora and Bob Hillmer, 
directors of enterprise information security and 
directory services. “We have double-checked our 
capability, but we've also questioned ourselves on 
how aware we've made our people and how we 
have honed our ability to respond.” 

Stempora and Hillmer look for advanced network 
security experience when hiring. “There are lots of 
new questions — new devices and new systems - with 
new answers yet to be found,” says Stempora. “Just 
as important as the broad technical experience are 
the soft skills required to increase effective security 
through communication, collaboration and a toler- 
ance for ambiguity. We must be able to take action, 
even when we don't have all the answers yet.” 

Adds Hillmer, “State Farm is a great place 
to work. Our slogan is ‘like a good neighbor’ - we 
live that.” 

For more job opportunities with security firms, turn to the pages 

of ITcareers. 

© If you'd like to take part in an upcoming ITareers feature, contact 
Janis Crowley, 650.312.0607 or janis_crowley@itcareers.net. 

© Produced by Carole R. Hedden 

© Designed by Aldebaran Graphic Solutions 


Look who's hiring at 
lTcareers.com 


Every day hiring managers turn to ITcareers.com 
for the best IT candidates.They know us and 
they know we can deliver. 


If you want a better challenge, we challenge you 
to find a better IT career site than ITcareers.com. 


QT) careers.com 








WWW.IMGEVENTS.COM/STORAGE 


ENTERPRISE 
ST JRAGE RSET 


, E EXPO 
Enterp,: ies 
Pris, C : clo! 
© Architectures, Connectivity, Services and Emerging Techn ae 


Pee e ern 


Boston Park Plaza 


Register 
Online now 
to receive a 

$100 discount. 
Priority Code 11SITOO 


STORAGE MANAGEMENT 


Track 2: 
DEFINING THE TECHNOLOGIES 


Track 3: 
IMPACTING THE INFRASTRUCTURE 


Keynotes include: James Rothnie, Senior VP. & CTO of EMC Corporation 
and Steve Duplessie, Founder & Senior Analyst of Enterprise Storage Group 


Produced By: Analyst Co-Sponsor: Premier Co-Sponsor:  _ Affiliate: Media Co-Sponsor: 
tntermediagroun = f= = VERITAS |“ — INFOSTOR 


Corporate Co-Sponsors: 
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VYIVIVY. p faeing. Lasbieges 
Please refer to job code 004542 on your resumé. 


SOEIMNMG 


Forever New Frontiers 


Itis the policy of The Boeing Company to attract and retain the best qualified people available without regard to race, color, religion, national origin, gender, sexual orientation, age, disability, or status as a disabied or Vietnam-era veteran 





EE 
MNET2S It’s Fast. 


NET2S is a leading International 
Consulting and Engin 
specializing in netw 
communications technologies. 
We are presently seeking to fill 
the following positions 

* Sr. Unix Administrator 

* TIBCO Engineer 

* Network Security Specialist 


* Telecom. Engineer W f rid rs 
* Sr. Software Engineer 
Developer 

All positions require BS/MS 
degree with a minimum of 2 to 3 
years of experience in the field 
Must possess excellent commu- 
nication skills as well 

NET2S, 82 Wall Street Suite 400. 
New York, NY 10005; Fax: (212) 
279- 1960; Phone (212) 279-6565; 
or Email: jobus-ny @net2s.com 
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It’s Huge. 


It Crosses 


Dyinnanieece 


IT CAREERS 


Sure, we have one of the country’s 
largest privately owned computer 


networks and the #15 ranking on the 


Work all day on one 


Fortune 500 list. And of course, our 


of the nation’s salaries are highly competitive. But what 


makes working here so special are out 


largest networks. 


family-friendly benefits packages, easy- 


going lifestyle, diverse workplace and 


Then go home 


welcoming communities. No wonder 


or wherever. 


we were included in Computerworld’s 
“100 Best Places to Work” 
Contact State Farm Human Resources 


at jobopps.corpsouth@statefarm.com 
S16) 33 
NETWORK WORLD, 


for information about current positions 


Or visit our website 


. STATE FARM 
at statefarm.com @ 


INSURANCE 


Get there with State Farm. 


COMPUTERWORLD, 
AND INFOWORLD 
He_p You Do A BETTER Jos. 


Now Let Us HELp 
You GET ONE. 


IT) Re 
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Few companies see the full scope of 
the contribution IT can make to their 
business. Fireman's Fund, a leading 
insurance company, will actively 
empower you to make that difference. 
Our Shared Services infrastructure 
positions you to make decisions with a 
tangible impact on the profitability of 
technological solutions. We'll give you 
the accountability you crave and 
inspire you to make the most of it - 
with lucid guiding principles, 
energized co-workers, and exceptional 
rewards. With your commitment, and 
that of our global parent, Allianz AG, 
there's nothing we can’t accomplish. 


MAKE YOUR 
OED IC); 


aNWeles 


www.firemansfund.com/careers/ita8.html 


Provide broad technical support for the development and enhancement of service 
applications and the Message Bus infrastructure that supports those services. You will 
collaborate and consult with application teams on the overall conceptual integration design, 
standards and rules, as well as participate in project design reviews. You should possess 
expertise in Java/VisualAge, XML, Websphere, UDB/DB2, UNIX/AIX, and UML/Rational Rose 
along with skills in OO analysis and design. Knowledge of the MQ Series, IBM's [AA BOM/XML, 
COBOL, IMS/CICS would be a plus. 


www.firemansfund.com/careers/ita11.html 


Provide high-level technical leadership and mentoring for a team of Systems Engineers 

while working closely with management to define system improvements and deployment 
strategies. Your technical responsibilities will include enhancement and maintenance of the 
Message Bus, the Report Ordering Interface, and additional enterprise applications as they are 
identified. As new initiatives are approved, you will take an active part in the design, development 
and deployment efforts. You should possess in-depth knowledge of OO analysis and design, 
Java/VisualAge, Websphere, UNIX/AIX , UDB/DB2, UML/Rational Rose, Serviets, MQ Series, JSP. and 
EJBs as well as IBM's IAA BOM/XML. Six years’ experience is required in full life cycle development 
including estimating and planning. We prefer 2+ years’ experience in web architectures. 


a. 
2 », 


Employees enjoy innovative benefits including professional development 
opportunities, paid leave accounts, a matching 401(k) program and retirement 
benefits. Fireman's Fund is an Equal Opportunity Employer, M/F/D/V. 
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Your ideas, dreams, 
i Mae ihe Mm 
you uniquely you. 


Candidates with technical skills in: 
JAVA, J2EE, XML, OOA, OOD, 
WebSphere, WebLogic, Visual Age for 


JAVA and MQ Se 


Project Managers 
ifoaiiiiesimeailiinary 


Technical Leads 


Senior Web Developer 


Programmers / Analysts 


Kanbay, Inc., 6400 Shafer Ct. Ste. 100 
Rosemont, IL 60018. Fax: 847-318-0784 
E-mail: rstewort( kanbay.com, Please reference code 
CW0110201 in all correspondence. | ‘ 


Kanbay 


www.kanbey.com 


a 


Analyst/Project Programmer 
Provide design, development, 
implementation and maintenance 
support for World-Wide-Web 
(WWW) database applications 
for biological and medical scien- 
tific research. Involves WEB 
content development, database 
design and implementation, CG! 
and JAVA application design and 
implementation and application 
interfacing with databases (OR- 
ACLE). Work with the Director 
and project scientists to create 
WWW applications to conduct 
data collection, validation and 
analysis to directly support and 
conduct the research project 
Development of projects in both 
UNIX (SUN Solaris) and PC 
(Win 95 and NT) systems. 
Required: Mater's degree in 
Statistics, Mathematics, or Com- 
putational Chemistry. $42,000/ 
year; 40 hrs. week, 8:00 a.m. - 
5:00 p.m. Two copies of resume 
to; MIKE BROOKS; DWE-FLC 
P.O. Box 7972 ison, WI 
53707-7972. Reference file 
#0101923 


Info Tech Co. seeks a principle 
consultant to perform/consult 
w/client regarding customizat'n/ 
implementat'n of iManage 
Products, Authentica RECEALL, 
CompuLaw Vis'n, Interface 
Interact'n, Spicer imaginat'n, & 
Eastman imag'g; design, prograry 
manage & technical support for 
internev/intranet websites; web 
page dvipmnt; integration of 
(Manage w/AutoCad; custom 
applicat'n dvipmnt. Bachelor's 
or equiv, in Eng'g/Computer 
Science. Min 2 yrs in-job or 
job-related exp inciud'g use of 
SQL 7.0 lIS 4/5, SSL & AutoCad. 
Travel Required. Employer will 
Pay travel costs. Send resumes 
to: Smart Solutions, Attn: 
Dale Mesnick, 4925 Galaxy, 
Warrensville Hts., OH 44128. 


Cwortitawaw7 


Visual Basic Programmer/ 
Analyst: Develop Visual Basic 
MIS software. Responsible for 
full cycle projects involved in 
client architecture & design, 
standards, selection & customiza- 


tion, graph 

selection & d 
application program selection 
Collaborate with five programmers 
& external consultants. Will use 
Visual Basic, MS Access, 
ActiveX controls, & MS SQL 
server.40 hr work week, 
Qam-5pm. Pay: $59,000/year. 
Requires Bachelor degree in 
Comp. Sci. EE or Math & 1 year 
experience in either in job 
offered or as Programmer, 
Programmer/Analyst, Systems/ 
Analyst or related. Other require- 
ments include: Experience to 
include design & development 
of MIS software 9: Visual 
Basic, MS Access, ActiveX 
controls, & MS SQL Server 
Apemcante must show proof 
ol oe real to work in 
the U.S. NO CALLS-SEND 2 
COPIES OF BOTH RESUMES 
& COVER LETTER to _ Illinois 
Department Of Employment 
Security, 401 S. State St., 7 
North, Chicago, IL 60605 
Attn: Leonard Boska, Reference 
#V-IL 29583-B. AN EMPLOYER 
PAID AD. 


CDI information Technology 
Services has multiple openings 
for computer consultants, pro- 
grammer/system analysts, soft- 
ware/project engineers. Candidate 
must have Bachelor's degree 
IT experience preferred. Traveling 
is required for some positions 
Please send resumes to River 
Bank Plaza 740 N. Plankinton 
Avenue Suite 700, Milwaukee, 
Wi 53203; 1915 Hwy. 52 N., Ste. 
2228, Rochester, MN 55901 or 
1900 E. Golf Road, Suite L10, 
Schaumburg, IL 60173. EOE 


i Bera ci oe 


National instruments Corp is a 
fast growing, Hi-tech Co based 

in Austin, TX and is currently 
seeking to fill multiple positions 
In the following: 


Software Engineers 

Research, degn & dvip s/ware in 
mainly C/C++ using OO dagn & 
s/ware dsgn principles. Must 
have Bachelors in Engg. or 
Comp Sci or Physics or Math 
CODE: ZSw 


Applications Engineers 

Develop applications for products, 
systems and new business 
opportunities. Provide technica! 
support for software products 


an understanding 
of electronics and software 
programming fundamentals. Must 
have Bachelor's in Engineering 
or Computer Science, or Physics 
or Math. CODE: ZAE 


Computer Hardware Design 
Engineers 

Research, dvip & manage pro- 
jects In data acquisition, signa! 
conditioning, industrial commu- 
nication, instrument ctri, image 
acquisition, embedded controliers 
& ASIC prdcts using degn tech- 
niques in analog & digital circuit 
dagn, comp architecture, com- 
munication bus cng & 
digital signal pri ing. Must 
have Bachelors in Engg, Com 
Sci, or Physics or Math. COD! 
ZHE 


Programmer/Analysts (Business 


dagn to dvip user inte 

data entry screens that support 
business functions. Bach in info 
Sys or Comp Sci or Business 
Admin. CODE: ZPA 


Staff Programmer/Analysts 
Evaluating applications develop- 
ment projects, leading a team of 
nalysts/interns; 
yzing, degng, 
8/ usi 


ede 
ears as Programmer/Analyst 
ODE: SPA 


Fax resumes to: Raja Faris, 
National instruments Corp at 
512-683-6924, Job Code must 
appear on resume. 


Systems Analyst. Analyze and 
design complex computer 

and application programs to 
meet customer needs; direct; 
assist, and review the work of 
development team members; 
and assign team members to 
projects. Must have Bachelor's 
degree in Computer Science, 
Engineering or related, and 
knowledge of C, UNIX, SQL, 
Java, Oracle, and HTML. Send 
resume with cover letter to APAC 
Customer Services, inc., Attn 
Cindy Corkery, 6 Parkway North 
Center, Deerfield, iL 60015. 
EEO/AA 

APAC CUSTOMER SERVICES, 
INC. is not affiliated with APAC, 
Inc., the road paving and 
construction materials company. 


Computer/info Systems 


The Foster Group, inc., seeks 
experienced Systems Engineers 
to design and implement large 
scale network systems and 
execute systems integration 
projects. Must develop and test 
multi-platiorm disaster recovery 
plans using LORPS/Rexsys; 
re-engineer business processes; 
and implement Total Quality 
programs. Multiple openings. Job 
in Chicago area. Competitive 
salary. Send resumes to HRD, 
The Foster Group, Inc., 180 N 
Michigan Avenue, Ste 2000, 
Chicago, IL 60601. Fax 312- 
609-1109 





Pr Analyst (Oakbrook, IL) Plan, 
develop, & test business applic 
programs, evaluate user requests, 
analyze & develop specifications 
& programs, review & alter pro- 
grams, monitor performance. 
perform conversion. 40 hrs/wk, 
9a-5p, $70,250/yr. BS in Comp 
Sci & 1 yr exp req'd. Exp must 
incl Cobol, CICS, Assembier, 
OB2, IMS DB-DC, IBM main- 
frame, Expeditor. Applicts must 
show proof of legal authority to 
work in US. Resume to: IL Dept 
of Emp! Security, 401 South 
State St. 7-North, Chicago, IL 
60605, Attn: L. Jackson, Ref 
#V-IL 24168-J, An employer paid 
ad, NO CALLS - Send 2 copies 
of both resume & cover letter. 


MILLIONS OF 


MILLIONS OF | 


ONLY 
THOUSANDS 
OF DOLLARS 


TOTAL IMPACT 
TOTAL 
SAVINGS 


Put your message in 
IT careers and 
ITcareers.com and 
reach the world’s 
best IT talent. 


ITCAREERS 


where the best get better 
1-800-762-2877 








THE WORLD 
OF Work Is 
CHANGING 
EVERY WEEK. 


LUCKILY, WE 
ARE Too! 


For the most up to 
date opportunities 
and coverage, stay 


tuned in with us. 


ITCAREERS 
where the hest get better 
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UCITA 


“Some things will be revised 
or tweaked. UCITA the 
customer’s hands and adds ex- 
tra hoops that you must go 
through to negotiate around 
the law,” said Gratz. “If you 
don’t recite the mantra exactly, 
then you may run into prob- 
lems that 
contract.” 

The NCCUSL drafting com- 
mittee will meet 
weekend. The meeting 
spurred by the American Bar 
Association, which 
considered asking for major 
revisions to UCITA but held 
off, pending this meeting. Op- 


ties 


next 
was 


recently 


Continued from page 1 


Travel 


he would analyze IT projects 
for his family’s multibrand hotel 
chains on a case-by-case basis. 
Robert Dickinson, president 
of Carnival Corp. in Miami, 
said he cut some “bells and 
whistles” projects, like imple- 
menting a second-generation 
imaging system, but he will 
consider new IT projects that 
save money. “Basically, we 
said, ‘If you can’t find a way to 
justify it this year, and we’ve al- 
ways done without it, we can 
probably get along without it. 
If you didn’t need it in 2001, 
won't need it in 2002’” 
unless it saves money, he said. 


you 


cause a breach of 


Vendor 


gives them what they want. But they’re willing to drop the 
so-called self-help provision, which allows a vendor to re- 


motely disable a system. 


End-user opponents: Want UCITA scrapped. But they’ll 
nonetheless offer up 80 pages of proposed amendments. 


Outlook: The UCITA drafting committee has so far resist- 
ed change. But opponents succeeded in stopping the law 
where it was introduced this year. They're gaining clout. 


ponents are seeking broad 
changes addressing click-wrap 
licensing, limits to damages 
and electronic self-help in the 
Uniform Computer Informa- 
tion Transaction Act, as the 


supplier. That sort of automa- 
tion cuts down on GDS fees 


| and costly call center staffing. 


Orbitz LLC CEO Jeffrey Katz 
told an audience at the confer- 
ence that he soon will have a 


| direct connect from his travel 


| haven’t 


According to Henry Harte- | 
veldt, an analyst at Forrester | 


Research Inc. in Cambridge, 
Mass., travel companies are 
looking to channel customers 


systems via the Internet. That 
saves the airlines money on 
fees paid to global distribution 
system (GDS) companies like 
Sabre Inc. in Fort Worth, Texas. 
All travel suppliers will try to 
reduce costs by “direct con- 
nect” — having customers buy 
travel online directly from the 


site to an airline. 

“Direct connect becomes 
more critical for them now,” 
Harteveldt said. “Dollars saved 
from GDS booking fees trickle 
down to the bottom line. More 
than 25% of the savings will go 
down to the bottom line.” 

Dickinson said he’s planning 
to create his own distribution 
system. “If the distribution sys- 


tems over the past 30 years | 


have been primarily shaped by 
the airline system, and they 
been too concerned 
with our business, then we 
have to cover both sides of the 
fence,” he said. 

One attendee who isn’t nec- 


| essarily scaling back on new IT 
directly into their reservation | 


projects is Gino Giovanelli, di- 
rector of interactive marketing 
at Radisson Hotels & Resorts in 


law is formally known. 
UCITAs opponents are 
hopeful that the most con- 


| tentious part of the proposal, 


| electronic 


be 


al- 


self-help, will 
dropped. That provision 


it’s not smaller than last year’s. 
One project Giovanelli 
considering would streamline 
the reservation profile so users 
fill out fewer fields. “Thirty- 
five percent of the people who 
go to our site leave at the pro- 


is 


file stage,” he said. That is, after | 
they have already picked dates | 
and room types. “This number | 


should not be zero, but I think 
it should be less than 35%.” 

All the attendees said they 
would push e-mail marketing 


as a cheap and effective way of | 


increasing bookings; however, 


some are targeting customers | 
relation- 


based customer 
ship management information. 
Instead of offering deals to ex- 


on 


| otic locales, the hotels can of- 


Minneapolis. “We are still going | 


ahead with IT projects,” Gio- 


| vanelli said. “They have to pass 


a certain litmus test, [but] it’s 
the same litmus test [as be- 
fore].” He said his proposed 
budget has been trimmed, but 


fer quick-trip getaways near 
home by offering cheap hotel 


rates to all known customers in 


certain ZIP codes. 
Giovanelli said he may not 


do that right away, but he does | 
are | 


market destinations that 
popular in certain areas by 


customizing the Web site. For | 


example, if Florida is a com- 
mon destination for people in 
the Northeast, he will send 


deals to customers with ZIP | 


codes in the Northeast, and he 
might offer Scottsdale, Ariz., 
for customers in Minnesota. D 


lows vendors to electronically 
disable software for a breach- 
of-contract violation. But 
users say it’s a ticking time 
bomb that will increase litiga- 
tion and create undue risk. 
“This type of automatic re- 
straint introduces a new level 
of risk to the business,” said 
Roland Salvato, manager of 
contract and vendor relation- 
ships at Blue Shield of Califor- 
nia. “If a vendor has the power 
to automatically disable the 


software code, then that gives | 


them an unfair power over us.” 

UCITA’s proponents, which 
include Microsoft Corp. 
America Online Inc. and trade 
groups that represent software 
companies, asked the 
UCITA drafting committee to 
remove the self-help provision 


have 


| The Catch-22 in 
Airline Security 


Airlines are particularly sensitive 
to cutting IT costs right now be- 
cause they don’t know what they 
will be required to implement for 
back-end security screening or if 
the government will fund any of 
the costs. 

“There's this catch-22. The air- 
lines are waiting for the FAA to 
see what they have to do, while 
the FAA is waiting for the airlines 
to tell them what they can do. If 
government takes over the fund- 
ing of security, then that returns 
some funding to the bottom line,” 
said Henry Harteveldt, an analyst 
at Forrester Research. Until then, 
“substantial portions of IT bud- 
gets may be put on hold.” 

Airlines are also less likely to 
invest in security screening tech- 
nology because it may not work 
as promised, and a cheaper ver- 
sion could be available in six 
months. 

“These are already IT budgets 
that have been decimated,” he 
said. “There's going to be a huge 
amount of beta testing. .. . You 
can’t play with security. The risk 
of failure is too great right now.” 

- Jennifer DiSabatino 





rf 


in an amendment proposal 

But opponents say that does- 
n’t go far enough. They want 
UCITA to prohibit any kind of 
disabling 
case vendors try to apply self- 
help under existing commer- 


capability, just in 


cial law. As long as vendors be 
lieve self-help is possible, they 
will build back doors that give 
them access to software and 
put systems at risk, said Gor- 
don Pence, intellectual proper- 
ty counsel at Caterpillar Inc. in 
Peoria, Ill. “It’s a security risk 
Even if used properly, it’s still a 
security risk.” 

Another issue for opponents 
is click-wrap licensing, in 
which users “click” to accept 
licensing terms that could in- 
advertently cause a 
breach, said Kevin Hudson, ex- 
ecutive director of the Caucus 
Association of High Tech Pro- 
curement in Winter Park, Fla. 

UCITA’s opponents, which 
have formed a broad coalition 
manufacturing, 
library 


contract 


representing 
financial services and 
groups, believe they have built 
enough clout to seek changes. 
The upcoming meeting fol- 
lows the blocking or stalling of 
UCITA in at least eight states 
this year, including Texas, a 
key technology state. “I would 
hope that sends a message to 
the people who are trying to 
get it passed,” said Miriam Nis- 
bet, legislative counsel for the 
American Library Association 
in Chicago. 

Still, it remains to been seen 
whether a compromise is pos- 
sible. Opponents have submit- 
ted 80 pages of amendments, 
almost as long as the law itself, 
and many believe UCITA can’t 
be fixed. If UCITA fails to win 
adoption, pressure will grow 
on Congress to set a uniform 
law, a process no side may like, 
said Carlyle “Connie” Ring Jr., 
chairman of the NCCUSL’s 
drafting committee. “Ours is 
an open process where we at 
least try to maintain rational 
dialogue,” said Ring. He added 
that he hopes the meeting can 
“enlarge the base of support” 
for the law. D 
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Redmond’ Real Woe 


HE TROUBLE WITH TALKING about the Microsoft 
antitrust settlement is that everything keeps changing. 
No sooner were industry pundits screaming about how 
the Justice Department’s settlement deal is a politically 
motivated sellout than the focus shifted to speculation 
about what would happen if the states didn’t sign on. And then how 
many states wouldn’t sign on. And then whether Microsoft would 
pull out of the deal. And then whether the judge would delay remedy 


proceedings while the public comments on the 
proposed settlement. 

And that was just in the first five days. 

Of course, for most corporate IT people, this 
is a sideshow. While Judge Colleen Kollar- 
Kotelly collects comments on the proposed set- 
tlement and holds remedy hearings for the 
states that rejected it, we’re a lot more con- 
cerned about how we can keep from losing our 
staffs as our budgets get slashed. 

Besides, a lot of IT people are asking, will 
anything the court does really force Microsoft 
to change? 

It’s a little late for that. Change isn’t coming. 
It’s already here. 

For Microsoft, change started arriving in ear- 
ly 2000, when its stock price stopped doubling 
every year and started to drift. 

More change came in the months that fol- 
lowed, as the dot-com economy went from go- 
go to gone-gone, and the huge pile of cash 
Microsoft had quietly invested in other compa- 
nies turned into, well, a small pile of cash. 

Then still more change, as more and more big 
corporate customers decided they were finally 
satisfied with their Microsoft products — and 
stopped upgrading. 

And yet more change as increasing numbers 
of consumers, worried about the 
cooling economy, decided they 
didn’t need new PCs either — and 
stopped buying. 

Along the way, wireless handheld 
devices (you know, cell phones with 
screens) became the Next Big 
Thing — and Microsoft wasn’t a 
player. The Internet turned out to 
be a great place for shopping but 
not so popular for buying — while 
Microsoft had bet heavily on .Net 
and Passport. And when Microsoft 
tried to strong-arm its customers 
into upgrading in lockstep, cus- 
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tomers didn’t just resist, they slapped back hard 
— and Microsoft had to back down. 

And, oh yeah, Microsoft’s appeal to the 
Supreme Court was denied, and the ruling that 
Microsoft is a lawbreaking monopolist was 
pretty much set in stone. 

That last one is what the court is worried 
about now. What Microsoft should be worried 
about is all the rest. 

Microsoft’s financial and compensation mod- 
el depends on a stock price that keeps climbing. 
Its product sales model depends on customers 
who keep upgrading. Its planning model de- 
pends on being able to control the game and 
limit change. 

In other words, right now, Microsoft’s whole 
business model is broken. Being declared a mo- 
nopoly and having to face the music is just 
adding insult to injury. 

Microsoft doesn’t really need to illegally 
leverage its Windows monopoly. What Micro- 
soft really needs are some new ideas. PC oper- 
ating systems are no longer a growth market. 
Neither are office applications or Web servers 
— and e-commerce infrastructure isn’t looking 
like the next rocket to the moon, either. 

The IT world has changed. Microsoft needs 
new products to survive that change. If it finds 

them, the company will have a new 
direction — a new way to grow. If it 
doesn’t, Microsoft will soon be 
clawing at corporate IT customers 
for every loose nickel, desperately 
searching for any way to stay alive 
— consent agreement or no consent 
agreement. 

So when Microsoft rolls out its 
Xbox game machine on Thursday, 


t 
} sideshow — but for IT shops, it 
| could be a sideshow that matters. 
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TECHNICAL ARCHITECT pilot 
fish embeds a graph - “in color, 
to make it readable” - in his de- 
sign document, then e-mails it 
out for review. Reviewer on the 
document quality and standards 
team prints it on a monochrome 
printer, writes one comment on 
the output and sends it back to 
the fish. The comment: “This 
graph needs to be in color.” 


LEST ANYONE FORGET IT 
guys set up a PC as a controller 
to manage every server in a law 
firm's computer room. And the 
password is known only to those 
few who have a need to know, 
reports a pilot fish on the inside. 
“However, the chosen password 
is also the software vendor's 
name,” he says, “which con- 
stantly streams across the bot- 
tom of the screen.” 


THIS USER'S PC has required 
seven rebuilds or replacements 
over a year and a half, so IT 
manager pilot fish starts looking 
for the cause. Fish and a tech 
pore over every aspect of the 
user's machine, even the electri- 
cal connection - but it's all 

clean. He's ready to give up 
when a co-worker mentions that 
the user is a believer in magnetic 
therapy. “Turns out he was wear- 


i 


a 
—- > 
ing magnets,” fish grumbles, 
“around his ankles, waist and 
wrists!” 


OUT-OF-THE-OFFICE road 
warrior is shouting at support 
pilot fish over the phone - she 
can't dial in to get her mail and 
he must fix the problem right 
now! “After spending several 
minutes calming her down, | 
finally get her to read the error 
message word-for-word off the 
screen,” fish says. “She practi- 
cally screams at me, ‘It says No 
dial tone!" 


TO SIMPLIFY remote backups, 
support team asks users to 
move all their important files into 
the My Documents folder on 
their PCs. Almost immediately, 
pilot fish gets a call from one 
user whose machine has died - 
just after she moved the Win- 
dows folder into My Documents 
Her explanation: “I remembered 
someone telling me that the 
Windows folder was a very 
important one.” 


Be important to me: sharky@ 
computerworld.com. |'|i send 
you a snazzy Shark shirt if your 
true tale of IT life sees print - or 
if it shows up in the daily feed at 
computerworld.com/sharky. 
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RETURN ON COMMUNICATIONS 


Fact: The sales department has different needs than That’s where AT&T comes in. We know complex 

HR. Or manufacturing. Or customer service. And they networks. We know reliability. And we know results 
all need to be on your network. But it’s not enough to Proof? For Steelcase, we put 30 factories and 16,000 
build a network just to run everyone’s apps. You need employees on a single North American network, speeding 
one that'll do so without causing you massive up customer service and saving hundreds of thousands 
headaches. And that will return your investment. of dollars a year. 


Short and long term. Want similar returns? AT&T can help you get them 


Cail AT&T toll free at | 866 745-2669 or visit us at www.attbusiness.com/return 
viickeeniitiaie NR ATeT 





If you ask IBM, e-business 
is complicated and hard. 


So don’t ask them. 


With fourteen operating systems, multiple chip architectures and a tangle of 
middleware to deal with, it’s no wonder only IBM can “integrate” their systems. 
And with their closed, complex systems, they control it all. Which means you'll 
pay —and pay—for their monopoly on service. 


On the other hand, Sun takes out complexity. Sun systems run on one chip 
architecture and a single operating environment, so you can scale from under- 
$1,000 desktop systems to over-$10-million data center systems without 
breaking a sweat, something you won't find at IBM. So if you want to lower 
your TCO (and who doesn’t?), Sun lets you run the same applications, the same 
middleware (directory, portal, app server, etc.) and the same administrative 
framework across your entire IT environment. Which means you can use a 
single set of tools to develop all your applications. So there’s no recoding, no 
retraining and no expensive consultants to come in and “manage” it all for 
you. You can even share the same system components between your midrange 
and data center-class systems. That’s how you reduce complexity and bring 
down the cost of running your business. Big time. 


IBM has it all wrong: e-business doesn’t have to be complicated or hard. You 
just need the technology and partners that all speak the same language: yours. 
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